95 matches found
LIM OpenEXR Null Pointer Dereference Vulnerability
OpenEXR is an open-standard, high dynamic range image format that is widely used in computer graphics to store image data, but can also store some data needed for post-synthesis processing. A null pointer dereference vulnerability exists in the Dwa decompression function of the IlmImf library in...
LIM OpenEXR Input Validation Error Vulnerability
Industrial Light And Magic LIM OpenEXR is an image file format from Industrial Light and Magic LIM, USA, for high dynamic range HDR images. An input validation error vulnerability exists in OpenEXR B44 uncompression, which can be exploited by an attacker to trigger a shift overflow and potentiall...
OESA-2021-1007 ImageMagick security update
Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...
EulerOS 2.0 SP5 : OpenEXR (EulerOS-SA-2021-1219)
According to the versions of the OpenEXR package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - OpenEXR is a high dynamic-range HDR image file format developed by Industrial Light & Magic for use in computer imaging applications. This packa...
March 29, 2021—KB5000842 (OS Builds 19041.906 and 19042.906) Preview
March 29, 2021—KB5000842 OS Builds 19041.906 and 19042.906 Preview 2/24/21 IMPORTANT As part of the end of support for Adobe Flash, KB4577586 is now available as an optional update from Windows Update WU and Windows Server Update Services WSUS. Installing KB4577586 will remove Adobe Flash Player...
Industrial Light and Magic Academy Software Foundation OpenEXR code issue vulnerability
Industrial Light and Magic Academy Software Foundation OpenEXR is an image file format from Industrial Light and Magic for High Dynamic Range HDR images.A code issue vulnerability exists in Industrial Light and Magic Academy Software Foundation OpenEXR, which stems from A null pointer compliance...
Industrial Light And Magic OpenEXR 缓冲区错误漏洞
Industrial Light And Magic Academy Software Foundation OpenEXR is an image file format for high dynamic range HDR images. industrial Light And Magic Academy Software Foundation A buffer overflow vulnerability exists in OpenEXR, which can be exploited by remote attackers to submit special file...
DEBIAN-CVE-2020-27762
A flaw was found in ImageMagick in coders/hdr.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned char. This would most likely lead to an impact to application availability, but could...
ImageMagick Studio ImageMagick 输入验证错误漏洞
Imagemagick Studio ImageMagick is a suite of open source image processing software from ImageMagick Studio Imagemagick Studio, an American company. The software can read, convert or write images in many formats. A security vulnerability exists in versions prior to ImageMagick 7.0.8-68, which stem...
OpenEXR security update
CentOS Errata and Security Advisory CESA-2020:4039 An update for OpenEXR is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
RHEL 7 : OpenEXR (RHSA-2020:4039)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4039 advisory. OpenEXR is a high dynamic-range HDR image file format developed by Industrial Light & Magic for use in computer imaging applications. This...
SAP 3D Visual Enterprise Viewer Input Validation Error Vulnerability (CNVD-2020-53163)
SAP 3D Visual Enterprise Viewer is a free 3D visualization viewer for Windows. An input validation error vulnerability exists in SAP 3D Visual Enterprise Viewer 9, which can be exploited by an attacker to cause an application crash via a specially crafted HDR file...
CVE-2020-6337
SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated HDR file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...
Industrial Light and Magic OpenEXR Resource Management Error Vulnerability
Industrial Light and Magic LIM OpenEXR is an image file format from Industrial Light and Magic LIM, USA, for high dynamic range HDR images. The IlmImf/ImfDeepScanLineInputFile.cpp file in Industrial Light and Magic OpenEXR versions prior to 2.5.2 has 'DeepScanLineInputFile:: DeepScanLineInputFile...
Industrial Light and Magic OpenEXR Code Issue Vulnerability
Industrial Light and Magic LIM OpenEXR is an image file format from Industrial Light and Magic LIM, USA, for high dynamic range HDR images. A code problem exists in the 'TiledInputFile::TiledInputFile' function of the IlmImf/ImfTiledInputFile.cpp file in versions of Industrial Light and Magic...
Industrial Light and Magic OpenEXR Buffer Overflow Vulnerability
Industrial Light and Magic LIM OpenEXR is an image file format for high dynamic range HDR images from Industrial Light and Magic LIM, USA. A buffer overflow vulnerability exists in the ImfTileOffsets.cpp file in versions of LIM OpenEXR prior to 2.4.1. The vulnerability stems from a networked syst...
DEBIAN-CVE-2017-2904
An exploitable integer overflow exists in the RADIANCE loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.hdr' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the...
UBUNTU-CVE-2017-2904
An exploitable integer overflow exists in the RADIANCE loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.hdr' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the...
Blender Sequencer imb_loadhdr Integer Overflow Vulnerability
Blender is an open source cross-platform all-in-one 3D animation software, providing a series of animated short film production solutions from modeling, animation, materials, rendering, to audio processing, video editing and so on. An integer overflow vulnerability exists in Blender Sequencer...
Apple Image I/O EXR Color Component Remote Code Execution Vulnerability(CVE-2016-4629)
SUMMARY An exploitable heap based buffer overflow exists in the handling of EXR images on OS X. A crafted EXR document can lead to a heap based buffer overflow resulting in remote code execution. Vulnerability can be triggered via a saved EXR file delivered by other means when opened in any...