Lucene search
+L

130 matches found

Vulnrichment
Vulnrichment
added 2026/05/14 7:1 p.m.9 views

CVE-2026-43908 OpenImageIO: Signed integer overflow in ConvertCbYCrYToRGB leads to heap out-of-bounds write in DPX 4:2:2 decoder

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, a signed 32-bit integer overflow in the pixel-loop index expression i 3 inside ConvertCbYCrYToRGB causes the function to compute a larg...

8.8CVSS5.9AI score0.00371EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/05/14 7:1 p.m.35 views

CVE-2026-43908 OpenImageIO: Signed integer overflow in ConvertCbYCrYToRGB leads to heap out-of-bounds write in DPX 4:2:2 decoder

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, a signed 32-bit integer overflow in the pixel-loop index expression i 3 inside ConvertCbYCrYToRGB causes the function to compute a larg...

8.8CVSS0.00371EPSS
Exploits1References1
CVE
CVE
added 2026/05/14 7:1 p.m.26 views

CVE-2026-43908

OpenImageIO is affected by a signed 32-bit integer overflow in the pixel-loop index expression i * 3 inside ConvertCbYCrYToRGB(), prior to versions 3.0.18.0 and 3.1.13.0. The overflow can cause a large negative pointer offset in the output buffer, leading to an out-of-bounds write that crashes th...

8.8CVSS5.9AI score0.00371EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2026/05/14 7:1 p.m.4 views

CVE-2026-43908 OpenImageIO: Signed integer overflow in ConvertCbYCrYToRGB leads to heap out-of-bounds write in DPX 4:2:2 decoder

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, a signed 32-bit integer overflow in the pixel-loop index expression i 3 inside ConvertCbYCrYToRGB causes the function to compute a larg...

8.8CVSS7.2AI score0.00371EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/05/14 7:0 p.m.34 views

CVE-2026-43909 OpenImageIO: Signed integer overflow in SwapRGBABytes loop index leads to out-of-bounds read/write in DPX ABGR decoder

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, a signed 32-bit integer overflow in the loop index expression i 4 inside SwapRGBABytes causes the function to compute a large negative...

8.8CVSS0.00371EPSS
Exploits1References1
CVE
CVE
added 2026/05/14 7:0 p.m.21 views

CVE-2026-43909

OpenImageIO contains a signed 32-bit overflow in SwapRGBABytes()’s loop (i * 4) when processing kABGR DPX images with large dimensions, causing a large negative pointer offset and resulting in a combined OOB read/write (reads from &input[i * 4], writes to the wrapped offset). This affects prior t...

8.8CVSS5.9AI score0.00371EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/14 7:0 p.m.10 views

CVE-2026-43909 OpenImageIO: Signed integer overflow in SwapRGBABytes loop index leads to out-of-bounds read/write in DPX ABGR decoder

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, a signed 32-bit integer overflow in the loop index expression i 4 inside SwapRGBABytes causes the function to compute a large negative...

8.8CVSS5.9AI score0.00371EPSS
Exploits1References1
EUVD
EUVD
added 2026/05/14 7:0 p.m.8 views

EUVD-2026-30415

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, a signed 32-bit integer overflow in the loop index expression i 4 inside SwapRGBABytes causes the function to compute a large negative...

8.8CVSS5.9AI score0.00371EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2026/05/14 7:0 p.m.11 views

CVE-2026-43909

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, a signed 32-bit integer overflow in the loop index expression i 4 inside SwapRGBABytes causes the function to compute a large negative...

8.8CVSS5.9AI score0.00371EPSS
Exploits1
AlpineLinux
AlpineLinux
added 2026/05/14 7:0 p.m.13 views

CVE-2026-43909

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, a signed 32-bit integer overflow in the loop index expression i 4 inside SwapRGBABytes causes the function to compute a large negative...

8.8CVSS5.9AI score0.00371EPSS
Exploits1References1
OSV
OSV
added 2026/05/14 7:0 p.m.4 views

CVE-2026-43909 OpenImageIO: Signed integer overflow in SwapRGBABytes loop index leads to out-of-bounds read/write in DPX ABGR decoder

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, a signed 32-bit integer overflow in the loop index expression i 4 inside SwapRGBABytes causes the function to compute a large negative...

8.8CVSS7.2AI score0.00371EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/05/14 12:0 a.m.15 views

PT-2026-41028

Name of the Vulnerable Software and Affected Versions OpenImageIO versions prior to 3.0.18.0 OpenImageIO versions prior to 3.1.13.0 Description A signed 32-bit integer overflow occurs in the loop index expression i 4 within the SwapRGBABytes function when processing kABGR DPX images with large...

10CVSS5.9AI score0.00371EPSS
Exploits4References15
Positive Technologies
Positive Technologies
added 2026/05/14 12:0 a.m.14 views

PT-2026-41026

Name of the Vulnerable Software and Affected Versions OpenImageIO versions prior to 3.0.18.0 OpenImageIO versions prior to 3.1.13.0 Description A signed integer overflow exists in the QueryRGBBufferSizeInternal function within DPXColorConverter.cpp when processing crafted DPX image files. The...

9.7CVSS6.6AI score0.0037EPSS
Exploits1References15
CNNVD
CNNVD
added 2026/05/14 12:0 a.m.11 views

OpenImageIO 缓冲区错误漏洞

OpenImageIO is an open-source image processing library developed by OpenImageIO. It features a user-friendly interface and supports a wide range of image formats. Versions of OpenImageIO prior to 3.0.18.0 and 3.1.13.0 contained a buffer error vulnerability. This vulnerability stemmed from a signe...

8.8CVSS6AI score0.00371EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/05/14 12:0 a.m.12 views

OpenImageIO 输入验证错误漏洞

OpenImageIO is an open-source image processing library developed by OpenImageIO. It features a user-friendly interface and supports a wide range of image formats. Versions of OpenImageIO prior to 3.0.18.0 and 3.1.13.0 contained a vulnerability related to input validation errors. This vulnerabilit...

8.3CVSS6.3AI score0.0037EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2008-6583

Malware in sbrugna...

7.8CVSS6.1AI score0.02996EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-9615

Malware in sbrugna...

5.5CVSS7.3AI score0.01416EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-2822

Malware in sbrugna...

7.8CVSS8.5AI score0.01552EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-2443

Malware in sbrugna...

5.5CVSS7.2AI score0.01265EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-4550

Malware in sbrugna...

5.5CVSS7.3AI score0.02255EPSS
Exploits0References11
Rows per page
Query Builder