Vulnerabilities > Debian > High

DATE CVE VULNERABILITY TITLE RISK
2022-12-30 CVE-2022-34677 Incorrect Conversion between Numeric Types vulnerability in multiple products
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where an unprivileged regular user can cause an integer to be truncated, which may lead to denial of service or data tampering.
local
low complexity
nvidia debian CWE-681
7.1
2022-12-30 CVE-2022-42257 Integer Overflow or Wraparound vulnerability in multiple products
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow may lead to information disclosure, data tampering or denial of service.
local
low complexity
nvidia debian CWE-190
7.3
2022-12-30 CVE-2022-42258 Integer Overflow or Wraparound vulnerability in multiple products
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow may lead to denial of service, data tampering, or information disclosure.
local
low complexity
nvidia debian CWE-190
7.3
2022-12-22 CVE-2022-41981 Stack-based Buffer Overflow vulnerability in multiple products
A stack-based buffer overflow vulnerability exists in the TGA file format parser of OpenImageIO v2.3.19.0.
network
high complexity
openimageio debian CWE-121
8.1
2022-12-22 CVE-2022-41988 Out-of-bounds Read vulnerability in multiple products
An information disclosure vulnerability exists in the OpenImageIO::decode_iptc_iim() functionality of OpenImageIO Project OpenImageIO v2.3.19.0.
network
low complexity
openimageio debian CWE-125
7.5
2022-12-22 CVE-2022-41999 NULL Pointer Dereference vulnerability in multiple products
A denial of service vulnerability exists in the DDS native tile reading functionality of OpenImageIO Project OpenImageIO v2.3.19.0 and v2.4.4.2.
network
low complexity
openimageio debian CWE-476
7.5
2022-12-22 CVE-2022-43597 Heap-based Buffer Overflow vulnerability in multiple products
Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
high complexity
openimageio debian CWE-122
8.1
2022-12-22 CVE-2022-43598 Heap-based Buffer Overflow vulnerability in multiple products
Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
high complexity
openimageio debian CWE-122
8.1
2022-12-22 CVE-2022-43599 Heap-based Buffer Overflow vulnerability in multiple products
Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
high complexity
openimageio debian CWE-122
8.1
2022-12-22 CVE-2022-43600 Heap-based Buffer Overflow vulnerability in multiple products
Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
high complexity
openimageio debian CWE-122
8.1