Bugzilla – Bug 1205021
VUL-0: CVE-2022-41838: OpenImageIO: DDS: crash when processing cubemap files and a cube face was not present
Last modified: 2022-11-04 10:05:55 UTC
rh#2139797 From https://github.com/OpenImageIO/oiio/releases/tag/v2.3.21.0: RLA: fix potential buffer overrun. (TALOS-2022-1629, CVE-2022-36354) #3624 TIFF: guard against corrupt files with buffer overflows. (TALOS-2022-1627, CVE-2022-41977) #3628 TIFF: guard against buffer overflow for certain CMYK files. (TALOS-2022-1633, CVE-2022-41639) (TALOS-2022-1643, CVE-2022-41988) #3632 References: https://bugzilla.redhat.com/show_bug.cgi?id=2139797 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-41838
Fix: https://github.com/OpenImageIO/oiio/pull/3625/commits/316f5f28c88b7ad7f4eeb9452914cde92e396191
(In reply to Carlos López from comment #0) > RLA: fix potential buffer overrun. (TALOS-2022-1629, CVE-2022-36354) #3624 > TIFF: guard against corrupt files with buffer overflows. (TALOS-2022-1627, > CVE-2022-41977) #3628 > TIFF: guard against buffer overflow for certain CMYK files. > (TALOS-2022-1633, CVE-2022-41639) (TALOS-2022-1643, CVE-2022-41988) #3632 Please ignore this, it is not relevant. The fix appeared in this changelog entry: https://github.com/OpenImageIO/oiio/releases/tag/v2.4.5.0
I love self-solving problems ;-)
(In reply to Hans-Peter Jansen from comment #3) > I love self-solving problems ;-) Unsure why you think this is already solved, the patch is applicable on Factory, but even if that is the case please just reassign to security-team, don't close the bug