24 matches found
Astra Linux - уязвимость в openexr
A flaw was discovered in OpenEXR’s hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. This flaw allows an attacker who can submit a crafted file processed by OpenEXR to trigger an integer overflow. The greatest threat of this vulnerability is to system availability...
Linux Distros Unpatched Vulnerability : CVE-2021-20300
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. This flaw allows an attacker who can submit a crafted file that is...
The vulnerability of the hufUncompress function in the /IlmImf/ImfHuf.cpp component of the OpenEXR image storage software allows a attacker to cause a system failure.
The vulnerability of the hufUncompress function in the /IlmImf/ImfHuf.cpp component of the OpenEXR image storage software, which supports wide dynamic range brightness, is related to integer overflow. Exploiting this vulnerability could allow a malicious actor to cause service failure by using a...
SUSE CVE-2009-1721
The decompression implementation in the Imf::hufUncompress function in OpenEXR 1.2.2 and 1.6.1 allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via vectors that trigger a free of an uninitialized pointer...
SUSE CVE-2021-20300
A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. This flaw allows an attacker who can submit a crafted file that is processed by OpenEXR, to trigger an integer overflow. The highest threat from this vulnerability is to system availability...
OESA-2022-1775 OpenEXR security update
OpenEXR is a high dynamic-range HDR image file format originally developed by Industrial Light & Magic for use in computer imaging applications. Security Fixes: A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. This flaw allows an attacker who can submit a...
CVE-2021-20300
A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. This flaw allows an attacker who can submit a crafted file that is processed by OpenEXR, to trigger an integer overflow. The highest threat from this vulnerability is to system availability...
DEBIAN-CVE-2021-20300
A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. This flaw allows an attacker who can submit a crafted file that is processed by OpenEXR, to trigger an integer overflow. The highest threat from this vulnerability is to system availability...
CVE-2021-20300
A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. This flaw allows an attacker who can submit a crafted file that is processed by OpenEXR, to trigger an integer overflow. The highest threat from this vulnerability is to system availability...
UBUNTU-CVE-2021-20300
A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. This flaw allows an attacker who can submit a crafted file that is processed by OpenEXR, to trigger an integer overflow. The highest threat from this vulnerability is to system availability...
CVE-2021-20300
A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. This flaw allows an attacker who can submit a crafted file that is processed by OpenEXR, to trigger an integer overflow. The highest threat from this vulnerability is to system availability...
Integer overflow
A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. This flaw allows an attacker who can submit a crafted file that is processed by OpenEXR, to trigger an integer overflow. The highest threat from this vulnerability is to system availability...
CVE-2021-20300
A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. This flaw allows an attacker who can submit a crafted file that is processed by OpenEXR, to trigger an integer overflow. The highest threat from this vulnerability is to system availability...
CVE-2021-20300
CVE-2021-20300 affects OpenEXR’s hufUncompress in ImfHuf.cpp, where processing a crafted EXR file can trigger an integer overflow, with the highest impact reported as availability disruption. The vulnerability is documented in NVD and repeated in multiple advisories (Debian/Red Hat/Nessus feeds) ...
CVE-2021-20300
A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. This flaw allows an attacker who can submit a crafted file that is processed by OpenEXR, to trigger an integer overflow. The highest threat from this vulnerability is to system availability...
ILM OpenEXR 输入验证错误漏洞
ILM OpenEXR is an image file format from Industrial Light and Magic ILM for high dynamic range HDR images. ILM OpenEXR suffers from an input validation error vulnerability that originates from an integer overflow in the product's Imf25::hufUncompress, which can be exploited by an attacker to caus...
CVE-2021-20300
A flaw was found in OpenEXR's hufUncompress function in OpenEXR/IlmImf/ImfHuf.cpp. This flaw allows an attacker who can submit a crafted file that is processed by OpenEXR, to trigger an integer overflow. The highest threat from this vulnerability is to system availability...
PT-2020-6857 · Openexr +3 · Openexr +3
Name of the Vulnerable Software and Affected Versions: OpenEXR affected versions not specified Description: A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp, allowing an attacker to trigger an integer overflow by submitting a crafted file. The highest threat...
OSV-2020-1610 Segv on unknown address in Imf_2_5::hufUncompress
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24854 Crash type: Segv on unknown address Crash state: Imf25::hufUncompress Imf25::DwaCompressor::uncompress Imf25::DwaCompressor::uncompress...
DEBIAN-CVE-2009-1721
The decompression implementation in the Imf::hufUncompress function in OpenEXR 1.2.2 and 1.6.1 allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via vectors that trigger a free of an uninitialized pointer...