CVE-2024-25442 - An issue in the HuginBase::PanoramaMemento::loadPTScript function of Hugin v2022.0.0 allows attackers to cause a heap buffer overflow via parsing a crafted image. https://bugs.launchpad.net/hugin/+bug/2025032 ---- CVE-2024-25443 - An issue in the HuginBase::ImageVariable<double>::linkWith function of Hugin v2022.0.0 allows attackers to cause a heap-use-after-free via parsing a crafted image. https://bugs.launchpad.net/hugin/+bug/2025035 ---- CVE-2024-25445 - Improper handling of values in HuginBase::PTools::Transform::transform of Hugin 2022.0.0 leads to an assertion failure. https://bugs.launchpad.net/hugin/+bug/2025038 ---- CVE-2024-25446 - An issue in the HuginBase::PTools::setDestImage function of Hugin v2022.0.0 allows attackers to cause a heap buffer overflow via parsing a crafted image. https://bugs.launchpad.net/hugin/+bug/2025037
Created hugin tracking bugs for this issue: Affects: fedora-all [bug 2263556]