rpm package
opensuse/hugin&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/hugin&distro=openSUSE%20Tumbleweed
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-25445 | — | < 2023.0.0-2.1 | 2023.0.0-2.1 | Feb 9, 2024 | Improper handling of values in HuginBase::PTools::Transform::transform of Hugin 2022.0.0 leads to an assertion failure. | ||
| CVE-2024-25442 | — | < 2023.0.0-2.1 | 2023.0.0-2.1 | Feb 9, 2024 | An issue in the HuginBase::PanoramaMemento::loadPTScript function of Hugin v2022.0.0 allows attackers to cause a heap buffer overflow via parsing a crafted image. | ||
| CVE-2007-5200 | — | < 2020.0.0-3.3 | 2020.0.0-3.3 | Oct 14, 2007 | hugin, as used on various operating systems including SUSE openSUSE 10.2 and 10.3, allows local users to overwrite arbitrary files via a symlink attack on the hugin_debug_optim_results.txt temporary file. |
- CVE-2024-25445Feb 9, 2024affected < 2023.0.0-2.1fixed 2023.0.0-2.1
Improper handling of values in HuginBase::PTools::Transform::transform of Hugin 2022.0.0 leads to an assertion failure.
- CVE-2024-25442Feb 9, 2024affected < 2023.0.0-2.1fixed 2023.0.0-2.1
An issue in the HuginBase::PanoramaMemento::loadPTScript function of Hugin v2022.0.0 allows attackers to cause a heap buffer overflow via parsing a crafted image.
- CVE-2007-5200Oct 14, 2007affected < 2020.0.0-3.3fixed 2020.0.0-3.3
hugin, as used on various operating systems including SUSE openSUSE 10.2 and 10.3, allows local users to overwrite arbitrary files via a symlink attack on the hugin_debug_optim_results.txt temporary file.