Openimageio

Openimageio

44 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2026-43903

  • EPSS 0.01%
  • Veröffentlicht 14.05.2026 19:10:21
  • Zuletzt bearbeitet 15.05.2026 19:42:45

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, sgiinput.cpp:265,274 use OIIO_DASSERT for bounds checking in the RLE decode loop. In rel...

7.8

CVE-2026-43904

Exploit
  • EPSS 0.01%
  • Veröffentlicht 14.05.2026 19:09:52
  • Zuletzt bearbeitet 16.05.2026 01:16:16

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, softimageinput.cpp:469 (mixed RLE) and :345 (pure RLE) do not clamp the run length to re...

7.8

CVE-2026-43905

Exploit
  • EPSS 0.01%
  • Veröffentlicht 14.05.2026 19:09:18
  • Zuletzt bearbeitet 15.05.2026 19:43:11

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, jpeg2000input.cpp:395 computes buffer size as const int bufsize = w * h * ch * buffer_bp...

5.5

CVE-2026-43996

Exploit
  • EPSS 0.01%
  • Veröffentlicht 14.05.2026 19:08:26
  • Zuletzt bearbeitet 16.05.2026 01:16:16

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, the bounds check in TGAInput::decode_pixel computes k + palbytespp as unsigned 32-bit ar...

8.3

CVE-2026-43907

Exploit
  • EPSS 0.04%
  • Veröffentlicht 14.05.2026 19:07:05
  • Zuletzt bearbeitet 15.05.2026 19:43:22

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, a signed integer overflow in QueryRGBBufferSizeInternal() in DPXColorConverter.cpp leads...

8.8

CVE-2026-43908

Exploit
  • EPSS 0.04%
  • Veröffentlicht 14.05.2026 19:01:21
  • Zuletzt bearbeitet 15.05.2026 18:07:55

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, a signed 32-bit integer overflow in the pixel-loop index expression i * 3 inside Convert...

8.8

CVE-2026-43909

Exploit
  • EPSS 0.04%
  • Veröffentlicht 14.05.2026 19:00:20
  • Zuletzt bearbeitet 15.05.2026 18:07:20

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, a signed 32-bit integer overflow in the loop index expression i * 4 inside SwapRGBABytes...

7.8

CVE-2026-43906

Exploit
  • EPSS 0.01%
  • Veröffentlicht 14.05.2026 18:54:17
  • Zuletzt bearbeitet 15.05.2026 19:42:27

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, a heap-based buffer overflow in the HEIF decoder of OpenImageIO allows out-of-bounds wri...

9.8

CVE-2024-55193

Exploit
  • EPSS 0.21%
  • Veröffentlicht 23.01.2025 22:15:14
  • Zuletzt bearbeitet 29.01.2025 15:27:45

OpenImageIO v3.1.0.0dev was discovered to contain a segmentation violation via the component /OpenImageIO/string_view.h.

9.8

CVE-2024-55192

Exploit
  • EPSS 0.23%
  • Veröffentlicht 23.01.2025 22:15:14
  • Zuletzt bearbeitet 05.02.2025 15:15:20

OpenImageIO v3.1.0.0dev was discovered to contain a heap overflow via the component OpenImageIO_v3_1_0::farmhash::inlined::Fetch64(char const*).