Denial Of Service (DoS)

openexr is vulnerable to denial of service DoS. The vulnerability exists in the DwaCompressor::uncompress in ImfDwaCompressor.cpp due to the out-of-bounds read and write when handling the UNKNOWN compression, allowing an attacker to crash the application...

openSUSE Security Update : openexr (openSUSE-2020-682)

This update for openexr provides the following fix : Security issues fixed : - CVE-2020-11765: Fixed an off-by-one error in use of the ImfXdr.h read function by DwaCompressor:Classifier:Classifier bsc1169575. - CVE-2020-11764: Fixed an out-of-bounds write in copyIntoFrameBuffer in ImfMisc.cpp...

openSUSE: Security Advisory for openexr (openSUSE-SU-2020:0682-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2020-11762

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read and write in DwaCompressor::uncompress in ImfDwaCompressor.cpp when handling the UNKNOWN compression case. Mitigation Mitigation for this issue is either not available or the currently available options do not meet th...

CVE-2020-11762

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read and write in DwaCompressor::uncompress in ImfDwaCompressor.cpp when handling the UNKNOWN compression case...