ogre-python@14.4.1 vulnerabilities

Object-Oriented Graphics Rendering Engine - python package

14.4.1

4 years ago

1 months ago

Known vulnerabilities in the ogre-python package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
M Mismatched Memory Management Routines ogre-python is an Object-Oriented Graphics Rendering Engine - python package Affected versions of this package are vulnerable to Mismatched Memory Management Routines in the `STBIImageCodec::encode()` function. An attacker can cause unintended behavior or potentially compromise memory integrity by providing crafted input that triggers mismatched memory management routines during local execution. How to fix Mismatched Memory Management Routines? There is no fixed version for `ogre-python`.	[0,)
M Heap-based Buffer Overflow ogre-python is an Object-Oriented Graphics Rendering Engine - python package Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the `stbiw__encode_png_line()` function. An attacker can execute arbitrary code or cause a denial of service by providing specially crafted input to the affected process. How to fix Heap-based Buffer Overflow? There is no fixed version for `ogre-python`.	[0,)
M NULL Pointer Dereference ogre-python is an Object-Oriented Graphics Rendering Engine - python package Affected versions of this package are vulnerable to NULL Pointer Dereference via the `stream` function. An attacker can cause a denial of service by manipulating the `mDefaultLog` argument to trigger a null pointer dereference. How to fix NULL Pointer Dereference? There is no fixed version for `ogre-python`.	[0,)