EUVD-2020-4100

Malware in sbrugna...

SUSE CVE-2017-9111

In OpenEXR 2.2.0, an invalid write of size 8 in the storeSSE function in ImfOptimizedPixelReading.h could cause the application to crash or execute arbitrary code...

The vulnerability of the ImfOptimizedPixelReading.h library in software for storing images in OpenEXR format, which has a wide dynamic range of brightness levels, arises from reading data beyond the acceptable buffer limit. This allows attackers to cause service interruptions.

The vulnerability of the ImfOptimizedPixelReading.h library, which is used in software for storing images with wide dynamic range brightness in OpenEXR format, relates to reading data beyond the allowable buffer size. Exploiting this vulnerability could allow a malicious actor to cause service...

Arbitrary Code Execution

openexr is vulnerable to arbitrary code execution. An invalid write of size 8 in the storeSSE function in ImfOptimizedPixelReading.h could cause the application to crash or execute arbitrary code...

CVE-2020-11758

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read in ImfOptimizedPixelReading.h...

DEBIAN-CVE-2020-11758

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read in ImfOptimizedPixelReading.h...

Out-of-bounds

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read in ImfOptimizedPixelReading.h...

CVE-2020-11758

CVE-2020-11758 affects OpenEXR before 2.4.1 via an out-of-bounds read in ImfOptimizedPixelReading.h. Public docs (Debian DLA-2358-1) note potential denial of service and possible arbitrary code execution when processing malformed EXR files; OpenEXR/ImageIO entries reference the same CVE family. R...

EulerOS 2.0 SP3 : OpenEXR (EulerOS-SA-2019-2638)

According to the versions of the OpenEXR package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In OpenEXR 2.2.0, an invalid read of size 2 in the hufDecode function in ImfHuf.cpp could cause the application to crash.CVE-2017-9110 - In...

Security update for openexr (moderate)

openSUSE Security Update: Security update for openexr Announcement ID: openSUSE-SU-2019:1816-1 Rating: moderate References: 1040109 1040113 1040115 Cross-References: CVE-2017-9111 CVE-2017-9113 CVE-2017-9115 Affected Products: openSUSE Leap 15.0 An update that fixes three vulnerabilities is now...

SUSE SLED15 / SLES15 Security Update : openexr (SUSE-SU-2019:1963-1)

This update for openexr fixes the following issues : Security issues fixed : CVE-2017-9111: Fixed an invalid write of size 8 in the storeSSE function in ImfOptimizedPixelReading.h bsc1040109. CVE-2017-9113: Fixed an invalid write of size 1 in the bufferedReadPixels function in ImfInputFile.cpp...

SUSE SLED12 / SLES12 Security Update : openexr (SUSE-SU-2019:1962-1)

This update for openexr fixes the following issues : Security issue fixed : CVE-2017-9111: Fixed an invalid write of size 8 in the storeSSE function in ImfOptimizedPixelReading.h bsc1040109. CVE-2017-9113: Fixed an invalid write of size 1 in the bufferedReadPixels function in ImfInputFile.cpp...

LIM OpenEXR Denial of Service Vulnerability (CNVD-2017-07515)

LIM OpenEXR is an image file format developed by Industrial Light and Magic LIM in the United States for high dynamic range HDR images. A denial of service vulnerability exists in the 'storeSSE' function of the ImfOptimizedPixelReading.h file in LIM OpenEXR version 2.2.0. An attacker can exploit...

CVE-2017-9111

In OpenEXR 2.2.0, an invalid write of size 8 in the storeSSE function in ImfOptimizedPixelReading.h could cause the application to crash or execute arbitrary code...