漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
An out-of-bounds write vulnerability exists in the OpenImageIO::add_exif_item_to_spec functionality of OpenImageIO Project OpenImageIO v2.4.4.2. Specially-crafted exif metadata can lead to stack-based memory corruption. An attacker can provide a malicious file to trigger this vulnerability.
CVSS Information
N/A
Vulnerability Type
返回栈上的变量地址
Vulnerability Title
OpenImageIO 缓冲区错误漏洞
Vulnerability Description
OpenImageIO是OpenImageIO开源的一个图像处理库。具有易于使用的界面和大量受支持的图像格式。 OpenImageIO v2.4.4.2版本存在安全漏洞,该漏洞源于其OpenImageIO::add_exif_item_to_spec函数允许攻击者通过特制的exif元数据实现越界写入导致基于栈的内存损坏。
CVSS Information
N/A
Vulnerability Type
N/A