Improper Input Validation

Overview Affected versions of this package are vulnerable to Improper Input Validation tinyexr 0.9.5 has an assertion failure in DecodePixelData in tinyexr.h. Remediation There is no fixed version for tinyexr. References - GitHub Issue...

Design/Logic Flaw

tinyexr 0.9.5 has an assertion failure in DecodePixelData in tinyexr.h...

DEBIAN-CVE-2018-12687

tinyexr 0.9.5 has an assertion failure in DecodePixelData in tinyexr.h...

CVE-2018-12687

tinyexr 0.9.5 has an assertion failure in DecodePixelData in tinyexr.h...

CVE-2018-12687

CVE-2018-12687 affects tinyexr 0.9.5, with an assertion failure in DecodePixelData (tinyexr.h). Root cause is a boundary/logic assertion in decoding pixel data. In the provided documents, CVSS metrics show a high impact on availability (CVSS-3 base score 7.5) but no explicit exploitation details ...

CVE-2018-12687

tinyexr 0.9.5 has an assertion failure in DecodePixelData in tinyexr.h...

CVE-2018-12092

tinyexr 0.9.5 has a heap-based buffer over-read in tinyexr::DecodePixelData in tinyexr.h, related to OpenEXR code...

Heap overflow

tinyexr 0.9.5 has a heap-based buffer over-read in tinyexr::DecodePixelData in tinyexr.h, related to OpenEXR code...

CVE-2018-12092

CVE-2018-12092 affects tinyexr 0.9.5, with a heap-based buffer over-read in tinyexr::DecodePixelData (tinyexr.h). Publicly reported descriptions in CNVD-2018-14428 and NVD confirm a buffer over-read related to OpenEXR code. The CNVD entry explicitly describes a vulnerability in tinyexr 0.9.5 and ...