DescriptionA heap out of bounds read vulnerability exists in the handling of IPTC data while parsing TIFF images in OpenImageIO v220.127.116.11. A specially-crafted TIFF file can cause a read of adjacent heap memory, which can leak sensitive process information. An attacker can provide a malicious file to trigger this vulnerability.
Overall state of this security issue: Does not affect SUSE products
This issue is currently rated as having critical severity.
|National Vulnerability Database|
SUSE Timeline for this CVECVE page created: Fri Dec 23 01:01:02 2022
CVE page last modified: Tue Apr 11 12:02:53 2023