EUVD-2024-38550

Malicious code in bioql PyPI...

SUSE CVE-2024-40630

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation via a format-agnostic API with a feature set, scalability, and robustness needed for feature film production. In affected versions there is a bug in the heif input...

Out-of-bounds Read

OpenImageIO is vulnerable to Out-of-bounds Read. The vulnerability is due to a bug in the heif input functionality, specifically in HeifInput::seeksubimage, which can potentially lead to information disclosure when using the ImageInput APIs...

CVE-2024-40630

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation via a format-agnostic API with a feature set, scalability, and robustness needed for feature film production. In affected versions there is a bug in the heif input...

DEBIAN-CVE-2024-40630

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation via a format-agnostic API with a feature set, scalability, and robustness needed for feature film production. In affected versions there is a bug in the heif input...

CVE-2024-40630

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation via a format-agnostic API with a feature set, scalability, and robustness needed for feature film production. In affected versions there is a bug in the heif input...

UBUNTU-CVE-2024-40630

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation via a format-agnostic API with a feature set, scalability, and robustness needed for feature film production. In affected versions there is a bug in the heif input...

CVE-2024-40630 HEIF Heap OOB Read in OpenImageIO

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation via a format-agnostic API with a feature set, scalability, and robustness needed for feature film production. In affected versions there is a bug in the heif input...

CVE-2024-40630

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation via a format-agnostic API with a feature set, scalability, and robustness needed for feature film production. In affected versions there is a bug in the heif input...

CVE-2024-40630

OpenImageIO (OIIO) OpenImageIO’s HEIF input path contains a bug in HeifInput::seek_subimage() that can lead to information disclosure in affected builds. The issue is documented as part of CVE-2024-40630; remediation is to upgrade to OpenImageIO 2.5.13.1 or later, where the patch (commit 0a2dcb4c...

PT-2024-28952 · Unknown +1 · Openimageio +1

Name of the Vulnerable Software and Affected Versions: OpenImageIO versions prior to 2.5.13.1 Description: The issue is related to a bug in the heif input functionality of OpenImageIO, specifically in the HeifInput::seek subimage function. This bug can lead to an information disclosure issue,...