5 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-24472
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A denial of service vulnerability exists in the FitsOutput::close functionality of OpenImageIO Project OpenImageIO v2.4.7.1. A specially crafted ImageOutput...
Vulnerability Spotlight: Specially crafted files could lead to denial of service, information disclosure in OpenImageIO parser
Lilith of Cisco Talos discovered these vulnerabilities. Cisco Talos recently discovered three vulnerabilities in the OpenImageIO image-parsing library that many popular pieces of 3-D rendering software use. OpenImageIO is a library that converts, compares and processes various image files. Blende...
CVE-2023-24472
OpenImageIO vulnerability CVE-2023-24472 affects OpenImageIO v2.4.7.1, in FitsOutput::close() where a crafted ImageOutput can cause denial of service. Exploitation details are documented by Talos/Cisco (TALOS-2023-1709) and Gentoo GLSA-202506-09, with remediation advising upgrade to newer OpenIma...
CVE-2023-24472
A denial of service vulnerability exists in the FitsOutput::close functionality of OpenImageIO Project OpenImageIO v2.4.7.1. A specially crafted ImageOutput Object can lead to denial of service. An attacker can provide malicious input to trigger this vulnerability...
OpenImageIO Project OpenImageIO FitsOutput::close() denial of service vulnerability
Talos Vulnerability Report TALOS-2023-1709 OpenImageIO Project OpenImageIO FitsOutput::close denial of service vulnerability March 30, 2023 CVE Number CVE-2023-24472 SUMMARY A denial of service vulnerability exists in the FitsOutput::close functionality of OpenImageIO Project OpenImageIO v2.4.7.1...