Lucene search
+L

49 matches found

OSV
OSV
added 2021/10/21 12:0 a.m.8 views

OSV-2021-1470 Heap-buffer-overflow in hufDecode

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=40091 Crash type: Heap-buffer-overflow READ 1 Crash state: hufDecode internalhufdecompress internalexrundopiz...

7.2AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/08/20 12:0 a.m.3 views

PT-2022-9180 · Openexr +1 · Openexr +1

Name of the Vulnerable Software and Affected Versions: OpenEXR affected versions not specified Description: A flaw in OpenEXR's hufDecode functionality allows an attacker to trigger an undefined right shift error by passing a crafted file to be processed by OpenEXR. The highest threat from this...

7.5CVSS6AI score0.01848EPSS
Exploits1References54
BDU FSTEC
BDU FSTEC
added 2021/07/22 12:0 a.m.8 views

The vulnerability of the hufDecode function in the OpenEXR library, which involves reading beyond the allowable buffer data limits, allows attackers to cause service interruptions.

The vulnerability of the hufDecode function in the OpenEXR library lies in the reading of data beyond the permissible buffer size. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

6.5CVSS6.9AI score0.01725EPSS
Exploits0References8Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/07/22 12:0 a.m.7 views

The vulnerability of the hufDecode function in the OpenEXR library, which involves reading beyond the allowable buffer data limits, allows attackers to access confidential information or cause service failures.

The vulnerability of the hufDecode function in the OpenEXR library lies in reading data beyond the acceptable buffer limits during the execution of exrmaketiled;. Exploiting this vulnerability can allow a remote attacker to access confidential information or cause service failures...

8.8CVSS7.2AI score0.01868EPSS
Exploits1References10Affected Software3
RedhatCVE
RedhatCVE
added 2021/07/14 6:22 p.m.49 views

CVE-2021-20304

A flaw was found in OpenEXR's hufDecode functionality. This flaw allows an attacker who can pass a crafted file to be processed by OpenEXR, to trigger an undefined right shift error. The highest threat from this vulnerability is to system availability...

7.5CVSS1.6AI score0.01508EPSS
Exploits1References3
Veracode
Veracode
added 2020/12/06 4:9 a.m.29 views

Denial Of Service (DoS)

openexr is vulnerable to denial of service DoS. The vulnerability exists through a crafted image causes a heap-based buffer over-read in the hufDecode function in IlmImf/ImfHuf.cpp during exrmaketiled execution allows an attacker to crash the application and cause other unspecified impact...

7.8CVSS4.2AI score0.01868EPSS
Exploits1References6Affected Software1
Veracode
Veracode
added 2020/12/06 3:19 a.m.28 views

Denial Of Service (DoS)

OpenEXR is vulnerable to denial of service. The vulnerability exist because of an invalid read of size 2 in the hufDecode function in ImfHuf.cpp could cause the application to crash...

6.5CVSS2.1AI score0.01725EPSS
Exploits0References7Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/12/18 12:0 a.m.30 views

EulerOS 2.0 SP3 : OpenEXR (EulerOS-SA-2019-2638)

According to the versions of the OpenEXR package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In OpenEXR 2.2.0, an invalid read of size 2 in the hufDecode function in ImfHuf.cpp could cause the application to crash.CVE-2017-9110 - In...

8.8CVSS7.2AI score0.0331EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/12/04 12:0 a.m.31 views

EulerOS 2.0 SP2 : OpenEXR (EulerOS-SA-2019-2469)

According to the version of the OpenEXR package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In OpenEXR 2.2.0, an invalid read of size 2 in the hufDecode function in ImfHuf.cpp could cause the application to crash.CVE-2017-9110 Note that...

6.5CVSS6.8AI score0.01725EPSS
Exploits0References2
Mageia
Mageia
added 2018/01/03 2:22 p.m.35 views

Updated OpenEXR packages fix security vulnerability

In OpenEXR 2.2.0, an invalid read of size 2 in the hufDecode function in ImfHuf.cpp could cause the application to crash CVE-2017-9110. In OpenEXR 2.2.0, an invalid read of size 1 in the getBits function in ImfHuf.cpp could cause the application to crash CVE-2017-9112. In OpenEXR 2.2.0, an invali...

6.5CVSS1.9AI score0.01851EPSS
Exploits0References2
Prion
Prion
added 2017/08/07 1:29 a.m.19 views

Heap overflow

In OpenEXR 2.2.0, a crafted image causes a heap-based buffer over-read in the hufDecode function in IlmImf/ImfHuf.cpp during exrmaketiled execution; it may result in denial of service or possibly unspecified other impact...

6.8CVSS7.9AI score0.01868EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2017/08/07 1:29 a.m.25 views

CVE-2017-12596

In OpenEXR 2.2.0, a crafted image causes a heap-based buffer over-read in the hufDecode function in IlmImf/ImfHuf.cpp during exrmaketiled execution; it may result in denial of service or possibly unspecified other impact...

7.8CVSS6.8AI score0.01868EPSS
Exploits1References5
OSV
OSV
added 2017/08/07 1:29 a.m.3 views

UBUNTU-CVE-2017-12596

In OpenEXR 2.2.0, a crafted image causes a heap-based buffer over-read in the hufDecode function in IlmImf/ImfHuf.cpp during exrmaketiled execution; it may result in denial of service or possibly unspecified other impact...

7.8CVSS7AI score0.01868EPSS
Exploits1References4
OSV
OSV
added 2017/08/07 1:29 a.m.30 views

CVE-2017-12596

In OpenEXR 2.2.0, a crafted image causes a heap-based buffer over-read in the hufDecode function in IlmImf/ImfHuf.cpp during exrmaketiled execution; it may result in denial of service or possibly unspecified other impact...

7.8CVSS7.2AI score
Exploits0References5
OSV
OSV
added 2017/08/07 1:29 a.m.4 views

DEBIAN-CVE-2017-12596

In OpenEXR 2.2.0, a crafted image causes a heap-based buffer over-read in the hufDecode function in IlmImf/ImfHuf.cpp during exrmaketiled execution; it may result in denial of service or possibly unspecified other impact...

7.8CVSS7.4AI score0.01868EPSS
Exploits1References1
OSV
OSV
added 2017/08/07 1:29 a.m.4 views

AZL-69682 CVE-2017-12596 affecting package OpenEXR 2.3.0-6

In OpenEXR 2.2.0, a crafted image causes a heap-based buffer over-read in the hufDecode function in IlmImf/ImfHuf.cpp during exrmaketiled execution; it may result in denial of service or possibly unspecified other impact...

7.8CVSS7AI score0.01868EPSS
Exploits1References1
Cvelist
Cvelist
added 2017/08/07 1:0 a.m.38 views

CVE-2017-12596

In OpenEXR 2.2.0, a crafted image causes a heap-based buffer over-read in the hufDecode function in IlmImf/ImfHuf.cpp during exrmaketiled execution; it may result in denial of service or possibly unspecified other impact...

7.1AI score0.01868EPSS
Exploits1References5
AlpineLinux
AlpineLinux
added 2017/08/07 1:0 a.m.48 views

CVE-2017-12596

In OpenEXR 2.2.0, a crafted image causes a heap-based buffer over-read in the hufDecode function in IlmImf/ImfHuf.cpp during exrmaketiled execution; it may result in denial of service or possibly unspecified other impact...

7.8CVSS7.2AI score0.01868EPSS
Exploits1
Debian CVE
Debian CVE
added 2017/08/07 1:0 a.m.41 views

CVE-2017-12596

In OpenEXR 2.2.0, a crafted image causes a heap-based buffer over-read in the hufDecode function in IlmImf/ImfHuf.cpp during exrmaketiled execution; it may result in denial of service or possibly unspecified other impact...

7.8CVSS8.4AI score0.01868EPSS
Exploits1
CNVD
CNVD
added 2017/08/07 12:0 a.m.41 views

OpenEXR 'hufDecode' Function Denial of Service Vulnerability

OpenEXR is an image file format for high dynamic range HDR images. A denial-of-service vulnerability exists in the 'hufDecode' function of the IlmImf/ImfHuf.cpp file of OpenEXR, which allows remote attackers to exploit the vulnerability to construct a malicious file, which can be parsed by the us...

7.8CVSS8AI score0.01868EPSS
Exploits1References1
Rows per page
Query Builder