6 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-18443
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenEXR 2.3.0 has a memory leak in ThreadPool in IlmBase/IlmThread/IlmThreadPool.cpp, as demonstrated by exrmultiview. CVE-2018-18443 Note that Nessus relies on...
MGASA-2020-0114 Updated ilmbase packages fix security vulnerability
The updated packages fix a security vulnerability: OpenEXR 2.3.0 has a memory leak in ThreadPool in IlmBase/IlmThread/ IlmThreadPool.cpp, as demonstrated by exrmultiview. CVE-2018-18443...
Fedora 30 : mingw-OpenEXR (2019-ce3385517b)
This update backports fixes for CVE-2018-18443 and CVE-2018-18444. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...
Fedora 31 : mingw-OpenEXR / mingw-ilmbase (2019-5b062c4a3b)
This update backports fixes for CVE-2018-18443 and CVE-2018-18444. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...
CVE-2018-18443
CVE-2018-18443 affects OpenEXR 2.3.0, with a memory leak in ThreadPool (IlmBase/IlmThread/IlmThreadPool.cpp) demonstrated by exrmultiview. The vulnerability is documented in OpenEXR context and is reflected in vendor advisories that updated ilmbase/OpenEXR packages to fixed releases (e.g., Mageia...
OpenEXR -- heap buffer overflow, and out-of-memory bugs
Cary Phillips reports: OpenEXR IlmBase v2.4.0 fixes the following security vulnerabilities: CVE-2018-18444 Issue 351 Out of Memory CVE-2018-18443 Issue 350 heap-buffer-overflow The relevant patches have been backported to the FreeBSD ports...