Ndaprela

**Name of the Vulnerable Software and Affected Versions** Inspektor Gadget (affected versions not specified) **Description** Inspektor Gadget has an issue where string fields from eBPF events in columns output mode are not sanitized, potentially allowing maliciously crafted event payloads from observed containers to inject ANSI escape sequences into the terminal of operators. This can lead to various effects due to the lack of sanitization of control characters. The columns output mode is the default when running Inspektor Gadget interactively. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Inspektor Gadget versions prior to 0.48.1 **Description** Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using eBPF. The `ig` binary includes a subcommand for image building, which utilizes a `Makefile.build` file. This file incorporates user-controlled data without proper escaping, leading to a command injection issue. An attacker controlling values within the `buildOptions` structure can execute arbitrary commands during the image building process. Exploitation could occur on the Linux host where the `ig` command is executed, particularly when using the `--local` flag, or within the build container if the flag is not used. The `buildOptions` structure is derived from the YAML gadget manifest provided to the `ig image build` command, requiring control over the `build.yml` file or its options to exploit the issue. **Recommendations** Update to version 0.48.1 or later.

**Name of the Vulnerable Software and Affected Versions** OpenEXR versions 3.3.2 **Description** OpenEXR is an image storage format used in the motion picture industry. A NULL pointer dereference can occur in a write operation when reading a deep scanline image with a large sample count in reduceMemory mode in version 3.3.2, potentially causing a target application to crash. **Recommendations** Update to version 3.3.3 or later.

**Name of the Vulnerable Software and Affected Versions** OpenEXR versions prior to 3.3.3 **Description** OpenEXR is an image storage format used in the motion picture industry. Versions prior to 3.3.3 trust unvalidated dataWindow size values from file headers, potentially leading to excessive memory allocation and performance degradation when processing malicious files. **Recommendations** Update to version 3.3.3 or later.

**Name of the Vulnerable Software and Affected Versions** MaterialX versions 1.39.2 and below **Description** MaterialX is an open standard for the exchange of rich material and look-development content across applications and renderers. The MaterialX XML parsing logic can potentially crash due to stack exhaustion when parsing an MTLX file with multiple nested nodegraph implementations. An attacker could intentionally crash a target program that uses OpenEXR by sending a malicious MTLX file. **Recommendations** Update to version 1.39.3 or later.

**Name of the Vulnerable Software and Affected Versions** OpenEXR versions 3.3.0 through 3.3.2 **Description** OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. A heap-based buffer overflow occurs during a write operation when decompressing ZIPS-packed deep scan-line EXR files with a maliciously forged chunk header. **Recommendations** Update to version 3.3.3 or later.

**Name of the Vulnerable Software and Affected Versions** MaterialX version 1.39.2 **Description** MaterialX is an open standard for the exchange of rich material and look-development content across applications and renderers. When parsing shader nodes in a MTLX file, the MaterialXCore code accesses a potentially null pointer, which can lead to crashes with maliciously crafted files. An attacker could intentionally crash a target program that uses OpenEXR by sending a malicious MTLX file. **Recommendations** Update to version 1.39.3 or later.

**Name of the Vulnerable Software and Affected Versions** MaterialX version 1.39.2 **Description** MaterialX is an open standard for the exchange of rich material and look-development content across applications and renderers. Nested imports of MaterialX files can lead to a crash due to stack memory exhaustion. This occurs because the library lacks a limit on the depth of the "import chain" when parsing file imports, utilizing recursion without depth restrictions. Constructing a deeply nested chain of MaterialX files referencing each other can exhaust the stack memory, causing a process crash. **Recommendations** Update to version 1.39.3 or later.

**Name of the Vulnerable Software and Affected Versions** MaterialX versions prior to 1.39.3 **Description** MaterialX is an open standard for the exchange of rich material and look-development content across applications and renderers. When parsing shader nodes in a MTLX file, the MaterialXCore code accesses a potentially null pointer, which can lead to crashes with maliciously crafted files. An attacker could intentionally crash a target program that uses MaterialX by sending a malicious MTLX file. **Recommendations** Update to MaterialX version 1.39.3 or later.

**Name of the Vulnerable Software and Affected Versions** OpenEXR versions prior to 3.3.3 **Description** OpenEXR, an image storage format used in the motion picture industry, contains a flaw. A heap-based buffer overflow can occur during a read operation when decompressing DWAA-packed scan-line EXR files with a maliciously forged chunk. The issue is due to bad pointer math. **Recommendations** Update to version 3.3.3 or later.