OSV-2021-2 Heap-buffer-overflow in Imf_2_5::FastHufDecoder::decode

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=29106 Crash type: Heap-buffer-overflow READ 2 Crash state: Imf25::FastHufDecoder::decode Imf25::hufUncompress Imf25::PizCompressor::uncompress...

Medium: OpenEXR

Issue Overview: An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read during Huffman uncompression, as demonstrated by FastHufDecoder::refill in ImfFastHuf.cpp. CVE-2020-11761 An issue was discovered in OpenEXR before 2.4.1. There is an std::vector out-of-bounds read and...

OpenEXR: out-of-bounds read during Huffman uncompression

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read during Huffman uncompression, as demonstrated by FastHufDecoder::refill in ImfFastHuf.cpp...

openexr:openexr_scanlines_fuzzer: Heap-buffer-overflow in Imf_2_5::FastHufDecoder::FastHufDecoder

Project: https://github.com/AcademySoftwareFoundation/openexr.git Detailed Report: https://oss-fuzz.com/testcase?key=5715033768853504 Project: openexr Fuzzing Engine: afl Fuzz Target: openexrscanlinesfuzzer Job Type: aflasanopenexr Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash...

PT-2020-5892 · Openexr +5 · Openexr +5

Name of the Vulnerable Software and Affected Versions: OpenEXR versions prior to 3.0.0-beta Description: The issue is related to a flaw in the FastHufDecoder function of the OpenEXR library, which can cause a shift overflow when processing crafted input files. This could potentially lead to...

openSUSE Security Update : openexr (openSUSE-2020-682)

This update for openexr provides the following fix : Security issues fixed : - CVE-2020-11765: Fixed an off-by-one error in use of the ImfXdr.h read function by DwaCompressor:Classifier:Classifier bsc1169575. - CVE-2020-11764: Fixed an out-of-bounds write in copyIntoFrameBuffer in ImfMisc.cpp...

Industrial Light and Magic OpenEXR Buffer Overflow Vulnerability (CNVD-2020-24154)

Industrial Light and Magic LIM OpenEXR is an image file format from Industrial Light and Magic LIM, USA, for high dynamic range HDR images. A buffer overflow vulnerability in the 'FastHufDecoder::refill' function of the ImfFastHuf.cpp file in versions of LIM OpenEXR prior to 2.4.1, which arises...

DEBIAN-CVE-2020-11761

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read during Huffman uncompression, as demonstrated by FastHufDecoder::refill in ImfFastHuf.cpp...

CVE-2020-11761

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read during Huffman uncompression, as demonstrated by FastHufDecoder::refill in ImfFastHuf.cpp...

UBUNTU-CVE-2020-11761

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read during Huffman uncompression, as demonstrated by FastHufDecoder::refill in ImfFastHuf.cpp...

Out-of-bounds

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read during Huffman uncompression, as demonstrated by FastHufDecoder::refill in ImfFastHuf.cpp...

CVE-2020-11761

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read during Huffman uncompression, as demonstrated by FastHufDecoder::refill in ImfFastHuf.cpp...