all InfoSec news
Vulnerability Spotlight: OpenImageIO file processing issues could lead to arbitrary code execution, sensitive information leak and denial of service
Malware Analysis, News and Indicators - Latest topics malware.news
Lilith >_> of Cisco Talos discovered these vulnerabilities.
Cisco Talos recently discovered nineteen vulnerabilities in OpenImageIO, an image processing library, which could lead to sensitive information disclosure, denial of service and heap buffer overflows which could further lead to code execution.
OpenImageIO is an image processing library useful for conversion and processing, as well as image comparison. This library is utilized by 3D-processing software from AliceVision (including Meshroom) and is also used by Blender for reading Photoshop .psd files.
Vulnerabilities …
code code execution denial of service information leak sensitive information service spotlight vulnerability vulnerability spotlight