2 matches found
AZL-44256 CVE-2021-23169 affecting package OpenEXR 2.3.0-6
A heap-buffer overflow was found in the copyIntoFrameBuffer function of OpenEXR in versions before 3.0.1. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled against OpenEXR...
AZL-44706 CVE-2020-16588 affecting package OpenEXR 2.3.0-6
A Null Pointer Deference issue exists in Academy Software Foundation OpenEXR 2.3.0 in generatePreview in makePreview.cpp that can cause a denial of service via a crafted EXR file...