{"id":"CVE-2022-43600","details":"Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer overflow. An attacker can provide malicious input to trigger these vulnerabilities.This vulnerability arises when the `xmax` variable is set to 0xFFFF and `m_spec.format` is `TypeDesc::UINT16`","modified":"2026-04-02T08:22:19.157003Z","published":"2022-12-22T22:15:16.617Z","related":["MGASA-2023-0151"],"references":[{"type":"ADVISORY","url":"https://www.debian.org/security/2023/dsa-5384"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/202305-33"},{"type":"EVIDENCE","url":"https://talosintelligence.com/vulnerability_reports/TALOS-2022-1656"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/openimageio/oiio","events":[{"introduced":"0"},{"last_affected":"4327cd8560b92965eb3679dd860620ac000cea24"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"2.4.4.2"}]}}],"versions":["2.3.16.0","Arnold-3.4.72.0","Release-0.10.0","Release-0.10.1","Release-0.10.10","Release-0.10.11","Release-0.10.12","Release-0.10.13","Release-0.10.14","Release-0.10.15","Release-0.10.16","Release-0.10.17","Release-0.10.18","Release-0.10.19","Release-0.10.2","Release-0.10.3","Release-0.10.4","Release-0.10.5","Release-0.10.6","Release-0.10.7","Release-0.10.8","Release-0.10.9","Release-0.5.1","Release-0.6.0","Release-0.6.1","Release-0.6.2","Release-0.6.3","Release-0.6.4","Release-0.7.0","Release-0.7.1","Release-0.8.0","Release-0.8.1","Release-0.8.3","Release-0.8.4","Release-0.8.5","Release-0.8.6","Release-0.8.7","Release-0.8.8","Release-0.8.9","Release-0.9.0","Release-0.9.1","Release-0.9.2","Release-0.9.3","Release-1.0.0","Release-1.0.1","Release-1.0.10","Release-1.0.11","Release-1.0.12","Release-1.0.2","Release-1.0.3","Release-1.0.4","Release-1.0.5","Release-1.0.6","Release-1.0.7","Release-1.0.8","Release-1.0.9","Release-1.1.0","Release-1.1.0-beta1","Release-1.1.0-beta2","Release-1.1.0-beta3","Release-1.1.0-beta4","Release-1.1.1","Release-1.1.10","Release-1.1.11","Release-1.1.12","Release-1.1.13","Release-1.1.2","Release-1.1.3","Release-1.1.4","Release-1.1.5","Release-1.1.6","Release-1.1.7","Release-1.1.8","Release-1.1.9","Release-1.2.0","Release-1.2.0-beta1","Release-1.2.0-beta2","Release-1.2.1","Release-1.2.2","Release-1.2.3","Release-1.3.0-dev","Release-1.3.1-dev","Release-1.3.10","Release-1.3.11","Release-1.3.12","Release-1.3.13","Release-1.3.14","Release-1.3.2-dev","Release-1.3.3-dev","Release-1.3.4-dev","Release-1.3.5","Release-1.3.5-dev","Release-1.3.6-dev","Release-1.3.7-beta1","Release-1.3.8-RC1","Release-1.3.9","Release-1.4.10","Release-1.4.11","Release-1.4.12","Release-1.4.13","Release-1.4.14","Release-1.4.15","Release-1.4.16","Release-1.4.1dev","Release-1.4.2dev","Release-1.4.3dev","Release-1.4.4dev","Release-1.4.5dev","Release-1.4.6RC1","Release-1.4.7","Release-1.4.8","Release-1.4.9","Release-1.5.0dev","Release-1.5.10","Release-1.5.11","Release-1.5.12","Release-1.5.13","Release-1.5.14","Release-1.5.15","Release-1.5.16","Release-1.5.17","Release-1.5.18","Release-1.5.19","Release-1.5.1dev","Release-1.5.20","Release-1.5.21","Release-1.5.22","Release-1.5.23","Release-1.5.24","Release-1.5.2dev","Release-1.5.3dev","Release-1.5.4dev-pre-SIMD","Release-1.5.5dev","Release-1.5.6dev","Release-1.5.7dev","Release-1.5.8beta1","Release-1.5.9RC1","Release-1.6.10","Release-1.6.11","Release-1.6.12","Release-1.6.13","Release-1.6.14","Release-1.6.15","Release-1.6.16","Release-1.6.17","Release-1.6.18","Release-1.6.1dev","Release-1.6.2dev","Release-1.6.3dev","Release-1.6.4dev","Release-1.6.6beta","Release-1.6.7RC1","Release-1.6.8","Release-1.6.8RC2","Release-1.6.9","Release-1.7.0dev","Release-1.7.10","Release-1.7.11","Release-1.7.12","Release-1.7.13","Release-1.7.14","Release-1.7.15","Release-1.7.16","Release-1.7.17","Release-1.7.18","Release-1.7.19","Release-1.7.1dev","Release-1.7.2dev","Release-1.7.3dev","Release-1.7.4dev","Release-1.7.5beta","Release-1.7.6RC1","Release-1.7.7","Release-1.7.8","Release-1.7.9","Release-1.8.0dev","Release-1.8.10","Release-1.8.11","Release-1.8.12","Release-1.8.13","Release-1.8.14","Release-1.8.15","Release-1.8.16","Release-1.8.17","Release-1.8.1dev","Release-1.8.2dev","Release-1.8.3dev","Release-1.8.4dev","Release-1.8.5","Release-1.8.5RC1","Release-1.8.5beta","Release-1.8.6","Release-1.8.7","Release-1.8.8","Release-1.8.9","Release-1.9.1dev","Release-1.9.2dev","Release-1.9.3dev","Release-1.9.4dev","Release-2.0.0-beta1","Release-2.0.1-RC1","Release-2.0.10","Release-2.0.11","Release-2.0.12","Release-2.0.13","Release-2.0.14","Release-2.0.2-RC2","Release-2.0.3","Release-2.0.4","Release-2.0.5","Release-2.0.6","Release-2.0.7","Release-2.0.8","Release-2.0.9","Release-2.1.0-dev","Release-2.1.1-dev","Release-2.1.10.0","Release-2.1.10.1","Release-2.1.11.0","Release-2.1.11.1","Release-2.1.11.2","Release-2.1.12.0","Release-2.1.13.0","Release-2.1.13.1","Release-2.1.14.0","Release-2.1.15.0","Release-2.1.15.0-docs1","Release-2.1.16.0","Release-2.1.17.0","Release-2.1.18.0","Release-2.1.18.1","Release-2.1.19.0","Release-2.1.2-dev","Release-2.1.20.0","Release-2.1.3-dev","Release-2.1.3.1-dev","Release-2.1.4.0-dev","Release-2.1.4.1-dev","Release-2.1.5.0-dev","Release-2.1.5.1-dev","Release-2.1.7-beta","Release-2.1.8.0-RC1","Release-2.1.8.1-RC2","Release-2.1.8.2-RC3","Release-2.1.9.0","Release-2.2.0.0-dev","Release-2.2.1.0-dev","Release-2.2.1.1-dev","Release-2.2.1.2-dev","Release-2.2.1.3-dev","Release-2.2.1.4-dev","Release-2.2.1.5-2-dev-spi","Release-2.2.10.0","Release-2.2.10.1","Release-2.2.11.0","Release-2.2.11.1","Release-2.2.12.0","Release-2.2.13.0","Release-2.2.13.1","Release-2.2.14.0","Release-2.2.15.0","Release-2.2.15.1","Release-2.2.16.0","Release-2.2.17.0","Release-2.2.18.0","Release-2.2.19.0","Release-2.2.2.0-dev","Release-2.2.20.0","Release-2.2.21.0","Release-2.2.3.0-dev","Release-2.2.3.0-dev.1","Release-2.2.4.0-beta1","Release-2.2.5.0-beta2","Release-2.2.6.0-RC1","Release-2.2.6.1","Release-2.2.7.0","Release-2.2.8.0","Release-2.2.9.0","Release-2.3.0.0-dev","Release-2.3.1.0-dev","Release-2.3.1.1-dev","Release-2.3.2.0-dev","Release-2.3.3.0-dev","Release-2.3.4.0-dev","arnold-3.4.71.0","spi-2.3.3.1-1.dev","spi-2.3.3.1-dev","spi-2.4.2.3","spi-Arn3.4.71.0","spi-Arn3.4.72.0","spi-Arn3.4.73.6","spi-Arn3.4.73.7","spi-Arn3.5.0.0","spi-Arn3.5.10.0","spi-Arn3.5.11.0","spi-Arn3.5.12.0","spi-Arn3.5.13.1","spi-Arn3.5.14.0","spi-Arn3.5.16.0","spi-Arn3.5.2.0","spi-Arn3.5.24.0","spi-Arn3.5.25.0","spi-Arn3.5.26.0","spi-Arn3.5.28.0","spi-Arn3.5.28.2","spi-Arn3.5.31.0","spi-Arn3.5.35.0","spi-Arn3.5.37.0","spi-Arn3.5.41.0","spi-Arn3.5.45.0","spi-Arn3.5.45.1","spi-Arn3.5.48.0","spi-Arn3.5.5.0","spi-Arn3.5.50.0","spi-Arn3.5.66.0","spi-Arn3.5.68.0","spi-Arn3.5.75.0","spi-Arn3.5.8.0","spi-Arn3.5.82.0","spi-Arn3.5.90.0","spi-Arn3.5.91.0","spi-Arn3.5.93.10","spi-Arn3.6.18.0","spi-Arn3.6.21.3","spi-Arn3.6.27.0","spi-Arn3.6.33.4","spi-Arn3.6.36.0","spi-Arn3.6.64.6","spi-Arn3.6.69.3","spi-Arn3.6.7.1","spi-Arn3.6.72.1","spi-Arn3.7.23.3","spi-Arn3.7.25.0","spi-Arn3.7.42.0","spi-SpComp2-v10","spi-SpComp2-v10.1","spi-SpComp2-v11","spi-SpComp2-v12","spi-SpComp2-v14","spi-SpComp2-v20","spi-SpComp2-v9","spi-SpComp2-v9.2","spi-spcomp2-release-38.0","spi-spcomp2-release-39.1","spi-spcomp2-release-39.2","spi-spcomp2-release-40.0","spi-spcomp2-release-40.2","spi-spcomp2-release-41.0","spi-spcomp2-release-41.1","spi-spcomp2-release-41.2","spi-spcomp2-release-41.3","spi-spcomp2-release-41.4","spi-spcomp2-release-42.0-rhel7","spi-spcomp2-release-43.0","spi-spcomp2-release-44.0","spi-spcomp2-release-44.1","spi-spcomp2-release-44.2","spi-spcomp2-release-44.3","spi-spcomp2-release-45.0","spi-spcomp2-release-45.1","spi-spcomp2-release-45.2","spi-spcomp2-release-45.3","spi-spcomp2-release-45.4","spi-spcomp2-release-45.5","spi-spcomp2-release-46.0","spi-spcomp2-release-46.1","spi-spcomp2-release-47.0","spi-spcomp2-release-48.0","spi-spcomp2-release-49.1","spi-spcomp2-release-49.2","spi-spcomp2-release-49.3","spi-spcomp2-release-49.4","spi-v7-Arn3.4.73.3","spi-v8-Arn3.4.73.6","spiArn-3.6.74.0","spiArn-3.6.84.0","spiArn-3.6.86.0","spiArn-3.6.94.0","spiArn-3.6.95.4","spiArn3.5.45.0","spiArn3.5.45.1","spiArn3.5.48.0","spiArn3.5.50.0","spiArn3.5.66.0","spiArn3.5.68.0","spiArn3.5.75.0","spiArn3.5.82.0","v2.0.14","v2.1.20.0","v2.2.10.0","v2.2.10.1","v2.2.11.0","v2.2.11.1","v2.2.12.0","v2.2.13.0","v2.2.13.1","v2.2.14.0","v2.2.15.0","v2.2.15.1","v2.2.16.0","v2.2.17.0","v2.2.18.0","v2.2.19.0","v2.2.20.0","v2.2.21.0","v2.2.6.1","v2.2.7.0","v2.2.8.0","v2.2.9.0","v2.3.10.0","v2.3.10.1","v2.3.11.0","v2.3.12.0","v2.3.13.0","v2.3.14.0","v2.3.15.0","v2.3.16.0","v2.3.17.0","v2.3.18.0","v2.3.19.0","v2.3.20.0","v2.3.21.0","v2.3.5.0-dev","v2.3.6.0-dev","v2.3.6.1-dev","v2.3.7.0-beta","v2.3.7.1-RC1","v2.3.7.2","v2.3.8.0","v2.3.9.1","v2.4.0.0-dev","v2.4.0.1-dev","v2.4.0.2-dev","v2.4.0.3-dev","v2.4.0.4-dev","v2.4.1.1-dev","v2.4.1.2-dev","v2.4.1.3-dev","v2.4.2.0-dev","v2.4.2.1-dev","v2.4.2.2-dev","v2.4.3.0-RC1","v2.4.3.0-beta","v2.4.4.0-RC2","v2.4.4.1","v2.4.4.2","v2.5.0.0-dev","v2.5.0.3-dev","v2.5.10.0","v2.5.10.1","v2.5.11.0","v2.5.12.0","v2.5.13.0","v2.5.13.1","v2.5.14.0","v2.5.15.0","v2.5.16.0","v2.5.17.0","v2.5.18.0","v2.5.19.0","v2.5.19.1","v2.5.2.0-dev","v2.5.3.0-beta1","v2.5.3.1-beta2","v2.5.3.2-rc1","v2.5.4.0","v2.5.5.0","v2.5.6.0","v2.5.7.0","v2.5.8.0","v2.5.9.0","v2.6.1.0-dev","v2.6.1.1-dev","v2.6.2.0-dev","v2.6.5.0-dev","v3.0.0.0-beta1","v3.0.0.1-beta2","v3.0.0.2-RC1","v3.0.0.3","v3.0.1.0","v3.0.10.0","v3.0.10.1","v3.0.11.0","v3.0.12.0","v3.0.13.0","v3.0.14.0","v3.0.15.0","v3.0.16.0","v3.0.17.0","v3.0.2.0","v3.0.3.0","v3.0.3.1","v3.0.4.0","v3.0.5.0","v3.0.6.0","v3.0.6.1","v3.0.7.0","v3.0.8.0","v3.0.8.1","v3.0.9.0","v3.0.9.1","v3.1.10.0","v3.1.11.0","v3.1.12.0","v3.1.4.0-beta","v3.1.5.0-beta2","v3.1.6.0-rc1","v3.1.6.1","v3.1.6.2","v3.1.7.0","v3.1.8.0","v3.1.9.0","v3.2.0.0-dev"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-43600.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"11.0"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}