4 matches found
Integer Overflow or Wraparound
Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound tinyexr 0.9.5 has a integer overflow over-write in tinyexr::DecodePixelData in tinyexr.h, related to OpenEXR code. Remediation There is no fixed version for tinyexr. References - GitHub Commit - GitHub Iss...
UBUNTU-CVE-2018-12687
tinyexr 0.9.5 has an assertion failure in DecodePixelData in tinyexr.h...
tinyexr Buffer Overflow Vulnerability
tinyexr is a small OpenEXR image load/save library. A buffer overflow vulnerability exists in tinyexr version 0.9.5. The vulnerability can be exploited to cause an out-of-bounds read with the 'tinyexr::ReadChannelInfo' function in the tinyexr.h file...
UBUNTU-CVE-2018-12064
tinyexr 0.9.5 has a heap-based buffer over-read via tinyexr::ReadChannelInfo in tinyexr.h...