Vulnerabilities > Debian > High

DATE CVE VULNERABILITY TITLE RISK
2022-12-22 CVE-2022-41988 Out-of-bounds Read vulnerability in multiple products
An information disclosure vulnerability exists in the OpenImageIO::decode_iptc_iim() functionality of OpenImageIO Project OpenImageIO v2.3.19.0.
network
low complexity
openimageio debian CWE-125
7.5
7.5
2022-12-22 CVE-2022-41999 NULL Pointer Dereference vulnerability in multiple products
A denial of service vulnerability exists in the DDS native tile reading functionality of OpenImageIO Project OpenImageIO v2.3.19.0 and v2.4.4.2.
network
low complexity
openimageio debian CWE-476
7.5
7.5
2022-12-22 CVE-2022-43597 Heap-based Buffer Overflow vulnerability in multiple products
Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
high complexity
openimageio debian CWE-122
8.1
8.1
2022-12-22 CVE-2022-43598 Heap-based Buffer Overflow vulnerability in multiple products
Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
high complexity
openimageio debian CWE-122
8.1
8.1
2022-12-22 CVE-2022-43599 Heap-based Buffer Overflow vulnerability in multiple products
Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
high complexity
openimageio debian CWE-122
8.1
8.1
2022-12-22 CVE-2022-43600 Heap-based Buffer Overflow vulnerability in multiple products
Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
high complexity
openimageio debian CWE-122
8.1
8.1
2022-12-22 CVE-2022-43601 Heap-based Buffer Overflow vulnerability in multiple products
Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
high complexity
openimageio debian CWE-122
8.1
8.1
2022-12-22 CVE-2022-43602 Heap-based Buffer Overflow vulnerability in multiple products
Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
high complexity
openimageio debian CWE-122
8.1
8.1
2022-12-22 CVE-2022-46871 An out of date library (libusrsctp) contained vulnerabilities that could potentially be exploited.
network
low complexity
mozilla debian
8.8
8.8
2022-12-20 CVE-2022-4515 OS Command Injection vulnerability in multiple products
A flaw was found in Exuberant Ctags in the way it handles the "-o" option.
local
low complexity
exuberant-ctags-project debian CWE-78
7.8
7.8