Security update for openexr (moderate)

openSUSE Security Update: Security update for openexr Announcement ID: openSUSE-SU-2021:0536-1 Rating: moderate References: 1184172 1184173 1184174 Cross-References: CVE-2021-3474 CVE-2021-3475 CVE-2021-3476 CVSS scores: CVE-2021-3474 NVD : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L...

OPENSUSE-SU-2021:0536-1 Security update for openexr

This update for openexr fixes the following issues: - CVE-2021-3474: Undefined-shift in Imf25::FastHufDecoder::FastHufDecoder bsc1184174 - CVE-2021-3475: Integer-overflow in Imf25::calculateNumTiles bsc1184173 - CVE-2021-3476: Undefined-shift in Imf25::unpack14 bsc1184172 This update was imported...

SUSE SLED15 / SLES15 Security Update : openexr (SUSE-SU-2021:1097-1)

This update for openexr fixes the following issues : CVE-2021-3474: Undefined-shift in Imf25::FastHufDecoder::FastHufDecoder bsc1184174 CVE-2021-3475: Integer-overflow in Imf25::calculateNumTiles bsc1184173 CVE-2021-3476: Undefined-shift in Imf25::unpack14 bsc1184172 Note that Tenable Network...

SUSE-SU-2021:1097-1 Security update for openexr

This update for openexr fixes the following issues: - CVE-2021-3474: Undefined-shift in Imf25::FastHufDecoder::FastHufDecoder bsc1184174 - CVE-2021-3475: Integer-overflow in Imf25::calculateNumTiles bsc1184173 - CVE-2021-3476: Undefined-shift in Imf25::unpack14 bsc1184172...

Denial Of Service (DoS)

openexr is vulnerable to denial of service DoS. The vulnerability exists through a crafted input file that is processed by OpenEXR could cause a shift overflow in the FastHufDecoder...

How to Vaccinate Against the Poor Password Policy Pandemic

Data breaches remain a constant threat, and no industry or organization is immune from the risks. From Fortune 500 companies to startups, password-related breaches continue to spread seemingly unchecked. As a result of the volume of data breaches and cybersecurity incidents, hackers now have acce...

LIM OpenEXR Input Validation Error Vulnerability

Industrial Light And Magic LIM OpenEXR is an image file format from Industrial Light and Magic LIM, USA, for high dynamic range HDR images. An input validation error vulnerability exists in OpenEXR B44 uncompression, which can be exploited by an attacker to trigger a shift overflow and potentiall...

LIM OpenEXR Shift Overflow Vulnerability

OpenEXR is an open-standard, high dynamic range image format that is widely used in computer graphics to store image data, but can also store some data needed for post-synthesis processing. A shift overflow vulnerability exists in FastHufDecoder in versions prior to LIM OpenEXR 3.0.0-beta, which...

CVE-2021-3476

A flaw was found in OpenEXR's B44 uncompression functionality in versions before 3.0.0-beta. An attacker who is able to submit a crafted file to OpenEXR could trigger shift overflows, potentially affecting application availability...

AZL-44922 CVE-2021-3476 affecting package OpenEXR 2.3.0-6

A flaw was found in OpenEXR's B44 uncompression functionality in versions before 3.0.0-beta. An attacker who is able to submit a crafted file to OpenEXR could trigger shift overflows, potentially affecting application availability...

DEBIAN-CVE-2021-3476

A flaw was found in OpenEXR's B44 uncompression functionality in versions before 3.0.0-beta. An attacker who is able to submit a crafted file to OpenEXR could trigger shift overflows, potentially affecting application availability...

CVE-2021-3476

A flaw was found in OpenEXR's B44 uncompression functionality in versions before 3.0.0-beta. An attacker who is able to submit a crafted file to OpenEXR could trigger shift overflows, potentially affecting application availability...

AZL-44640 CVE-2021-3474 affecting package OpenEXR 2.3.0-6

There's a flaw in OpenEXR in versions before 3.0.0-beta. A crafted input file that is processed by OpenEXR could cause a shift overflow in the FastHufDecoder, potentially leading to problems with application availability...

DEBIAN-CVE-2021-3474

There's a flaw in OpenEXR in versions before 3.0.0-beta. A crafted input file that is processed by OpenEXR could cause a shift overflow in the FastHufDecoder, potentially leading to problems with application availability...

CVE-2021-3474

There's a flaw in OpenEXR in versions before 3.0.0-beta. A crafted input file that is processed by OpenEXR could cause a shift overflow in the FastHufDecoder, potentially leading to problems with application availability...

CVE-2021-3474

There's a flaw in OpenEXR in versions before 3.0.0-beta. A crafted input file that is processed by OpenEXR could cause a shift overflow in the FastHufDecoder, potentially leading to problems with application availability...

Design/Logic Flaw

There's a flaw in OpenEXR in versions before 3.0.0-beta. A crafted input file that is processed by OpenEXR could cause a shift overflow in the FastHufDecoder, potentially leading to problems with application availability...

Design/Logic Flaw

A flaw was found in OpenEXR's B44 uncompression functionality in versions before 3.0.0-beta. An attacker who is able to submit a crafted file to OpenEXR could trigger shift overflows, potentially affecting application availability...

CVE-2021-3474

There's a flaw in OpenEXR in versions before 3.0.0-beta. A crafted input file that is processed by OpenEXR could cause a shift overflow in the FastHufDecoder, potentially leading to problems with application availability...

CVE-2021-3476

A flaw was found in OpenEXR's B44 uncompression functionality in versions before 3.0.0-beta. An attacker who is able to submit a crafted file to OpenEXR could trigger shift overflows, potentially affecting application availability...