CVE-2022-38529

tinyexr commit 0647fb3 was discovered to contain a heap-buffer overflow via the component rleUncompress.
References
Link Resource
https://github.com/syoyo/tinyexr/issues/169 Exploit Issue Tracking Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:tinyexr_project:tinyexr:2022-06-28:*:*:*:*:*:*:*

History

09 Sep 2022, 19:44

Type Values Removed Values Added
CPE cpe:2.3:a:tinyexr_project:tinyexr:2022-06-28:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.8
CWE CWE-787
References (MISC) https://github.com/syoyo/tinyexr/issues/169 - (MISC) https://github.com/syoyo/tinyexr/issues/169 - Exploit, Issue Tracking, Third Party Advisory

06 Sep 2022, 23:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-09-06 23:15

Updated : 2024-02-04 22:51


NVD link : CVE-2022-38529

Mitre link : CVE-2022-38529

CVE.ORG link : CVE-2022-38529


JSON object : View

Products Affected

tinyexr_project

  • tinyexr
CWE
CWE-787

Out-of-bounds Write