openSUSE: Security Advisory for openexr (openSUSE-SU-2019:1826-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

EulerOS 2.0 SP3 : OpenEXR (EulerOS-SA-2019-2638)

According to the versions of the OpenEXR package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In OpenEXR 2.2.0, an invalid read of size 2 in the hufDecode function in ImfHuf.cpp could cause the application to crash.CVE-2017-9110 - In...

SUSE SLED15 / SLES15 Security Update : openexr (SUSE-SU-2019:1963-1)

This update for openexr fixes the following issues : Security issues fixed : CVE-2017-9111: Fixed an invalid write of size 8 in the storeSSE function in ImfOptimizedPixelReading.h bsc1040109. CVE-2017-9113: Fixed an invalid write of size 1 in the bufferedReadPixels function in ImfInputFile.cpp...

Code injection

In OpenEXR 2.2.0, an invalid write of size 2 in the = operator function in half.h could cause the application to crash or execute arbitrary code...

CVE-2017-9115

In OpenEXR 2.2.0, an invalid write of size 2 in the = operator function in half.h could cause the application to crash or execute arbitrary code...

CVE-2017-9115

CVE-2017-9115 affects OpenEXR 2.2.0: an invalid write of size 2 in the = operator function in half.h can crash the application or allow code execution. Public references indicate a fix in OpenEXR 2.2.1; upgrading to 2.2.1 or newer is the advised remediation. Connected docs also note related, broa...