Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mageiaGentoo FoundationMGASA-2020-0114
HistoryMar 06, 2020 - 7:13 p.m.

Updated ilmbase packages fix security vulnerability

2020-03-0619:13:58
Gentoo Foundation
advisories.mageia.org
9

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

56.9%

JSON

The updated packages fix a security vulnerability: OpenEXR 2.3.0 has a memory leak in ThreadPool in IlmBase/IlmThread/ IlmThreadPool.cpp, as demonstrated by exrmultiview. (CVE-2018-18443)

OSVersionArchitecturePackageVersionFilename
Mageia7noarchilmbase< 2.3.0-1.1ilmbase-2.3.0-1.1.mga7

Related

debiancve 1
ubuntucve 1
redhatcve 1
osv 1
openvas 4
prion 1
cve 1
fedora 3
nessus 3
freebsd 1
debiancve
debiancve
CVE-2018-18443
2018-10-17 19:29:00
ubuntucve
ubuntucve
CVE-2018-18443
2018-10-17 00:00:00
redhatcve
redhatcve
CVE-2018-18443
2018-10-25 13:50:02
osv
osv
CVE-2018-18443
2018-10-17 19:29:00
openvas
openvas
Mageia: Security Advisory (MGASA-2020-0114)
2022-01-28 00:00:00
Fedora Update for mingw-OpenEXR FEDORA-2019-ce3385517b
2019-11-22 00:00:00
Fedora Update for mingw-ilmbase FEDORA-2019-5b062c4a3b
2020-01-09 00:00:00
prion
prion
Memory corruption
2018-10-17 19:29:00
cve
cve
CVE-2018-18443
2018-10-17 19:29:00
fedora
fedora
[SECURITY] Fedora 30 Update: mingw-OpenEXR-2.2.1-5.fc30
2019-11-22 01:23:02
[SECURITY] Fedora 31 Update: mingw-ilmbase-2.3.0-3.fc31
2019-11-22 00:48:17
[SECURITY] Fedora 31 Update: mingw-OpenEXR-2.3.0-3.fc31
2019-11-22 00:48:18
nessus
nessus
Fedora 30 : mingw-OpenEXR (2019-ce3385517b)
2019-11-22 00:00:00
FreeBSD : OpenEXR -- heap buffer overflow, and out-of-memory bugs (e4d9dffb-2a32-11ea-9693-e1b3f6feec79)
2019-12-30 00:00:00
Fedora 31 : mingw-OpenEXR / mingw-ilmbase (2019-5b062c4a3b)
2019-11-22 00:00:00
freebsd
freebsd
OpenEXR -- heap buffer overflow, and out-of-memory bugs
2018-10-17 00:00:00

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

56.9%

JSON
Related for MGASA-2020-0114
debiancve1ubuntucve1redhatcve1osv1openvas4prion1cve1fedora3nessus3freebsd1