Lucene search
+L

96 matches found

nessus
nessus
added 2026/05/26 12:0 a.m.12 views

Amazon Linux 2023 : openexr, openexr-devel, openexr-libs (ALAS2023-2026-1713)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1713 advisory. OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From versions 3.0.0 to before 3.2.9, 3.3.0 to...

9.8CVSS5.9AI score0.00465EPSS
Exploits3References8
osv
osv
added 2026/05/22 1:17 p.m.17 views

OESA-2026-2366 OpenEXR security update

OpenEXR is a high dynamic-range HDR image file format originally developed by Industrial Light Magic for use in computer imaging applications. Security Fixes: OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture...

9.8CVSS5.9AI score0.00465EPSS
Exploits3References4
osv
osv
added 2026/05/22 1:17 p.m.12 views

OESA-2026-2365 OpenEXR security update

OpenEXR is a high dynamic-range HDR image file format originally developed by Industrial Light Magic for use in computer imaging applications. Security Fixes: OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture...

9.8CVSS5.9AI score0.00465EPSS
Exploits3References4
astralinux
astralinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: net: nfc: nci: Fixed parameter validation for packet data Since commit 9c328f54741b “net: nfc: nci: Added parameter validation for packet data”, communication with nci/nfc chips no longer works. The mentioned commit attempted to...

8.3CVSS6AI score0.00269EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/15 2:32 p.m.10 views

CVE-2026-42217

A flaw was found in OpenEXR. A remote attacker could exploit this vulnerability by providing a specially crafted EXR image file. The readVariableLengthInteger function, responsible for decoding variable-length integers, does not properly bound the shift count. This can lead to undefined behavior,...

9.8CVSS5.7AI score0.00393EPSS
Exploits1References6
osv
osv
added 2026/05/15 8:16 a.m.9 views

SUSE-SU-2026:21796-1 Security update for openexr

This update for openexr fixes the following issues - CVE-2026-41142: integer overflow in ImageChannel: resize can lead to a heap out-of-bounds write via OpenEXRUtil public API bsc1264356. - CVE-2026-42216: missing checks in IDManifest: init can lead to out-of-bounds read during prefix expansion...

9.8CVSS5.9AI score0.00465EPSS
Exploits3References7
nessus
nessus
added 2026/05/13 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-43291

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: nfc: nci: Fix parameter validation for packet data Since commit 9c328f54741b net: nfc: nci: Add parameter validation for packet data communication with nci...

8.3CVSS7AI score0.00269EPSS
Exploits0References2
susecve
susecve
added 2026/05/12 3:31 a.m.18 views

SUSE CVE-2026-43291

In the Linux kernel, the following vulnerability has been resolved: net: nfc: nci: Fix parameter validation for packet data Since commit 9c328f54741b "net: nfc: nci: Add parameter validation for packet data" communication with nci nfc chips is not working any more. The mentioned commit tries to f...

8.3CVSS5.8AI score0.00269EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/05/08 6:17 p.m.10 views

CVE-2026-43291

A flaw was found in the Linux kernel's Near Field Communication NFC NCI subsystem. Incorrect parameter validation for variable-length packet data can lead to communication failures with NCI NFC chips. This issue, stemming from an attempt to prevent access to uninitialized data, results in a Denia...

8.3CVSS5.8AI score0.00269EPSS
Exploits0References4
euvd
euvd
added 2026/05/08 3:31 p.m.13 views

EUVD-2026-28561

In the Linux kernel, the following vulnerability has been resolved: net: nfc: nci: Fix parameter validation for packet data Since commit 9c328f54741b "net: nfc: nci: Add parameter validation for packet data" communication with nci nfc chips is not working any more. The mentioned commit tries to f...

5.8AI score0.00269EPSS
Exploits0References8
nvd
nvd
added 2026/05/08 2:16 p.m.15 views

CVE-2026-43291

In the Linux kernel, the following vulnerability has been resolved: net: nfc: nci: Fix parameter validation for packet data Since commit 9c328f54741b "net: nfc: nci: Add parameter validation for packet data" communication with nci nfc chips is not working any more. The mentioned commit tries to f...

8.3CVSS0.00269EPSS
Exploits0References7
ubuntucve
ubuntucve
added 2026/05/08 2:16 p.m.14 views

CVE-2026-43291

In the Linux kernel, the following vulnerability has been resolved: net: nfc: nci: Fix parameter validation for packet data Since commit 9c328f54741b "net: nfc: nci: Add parameter validation for packet data" communication with nci nfc chips is not working any more. The mentioned commit tries to f...

8.3CVSS5.7AI score0.00269EPSS
Exploits0References17
osv
osv
added 2026/05/08 2:16 p.m.12 views

UBUNTU-CVE-2026-43291

In the Linux kernel, the following vulnerability has been resolved: net: nfc: nci: Fix parameter validation for packet data Since commit 9c328f54741b "net: nfc: nci: Add parameter validation for packet data" communication with nci nfc chips is not working any more. The mentioned commit tries to f...

8.3CVSS5.7AI score0.00269EPSS
Exploits0References18
attackerkb
attackerkb
added 2026/05/08 1:11 p.m.9 views

CVE-2026-43291

In the Linux kernel, the following vulnerability has been resolved: net: nfc: nci: Fix parameter validation for packet data Since commit 9c328f54741b "net: nfc: nci: Add parameter validation for packet data" communication with nci nfc chips is not working any more. The mentioned commit tries to f...

8.3CVSS5.7AI score0.00269EPSS
Exploits0References8Affected Software1
cvelist
cvelist
added 2026/05/08 1:11 p.m.41 views

CVE-2026-43291 net: nfc: nci: Fix parameter validation for packet data

In the Linux kernel, the following vulnerability has been resolved: net: nfc: nci: Fix parameter validation for packet data Since commit 9c328f54741b "net: nfc: nci: Add parameter validation for packet data" communication with nci nfc chips is not working any more. The mentioned commit tries to f...

8.3CVSS0.00269EPSS
Exploits0References7
osv
osv
added 2026/05/08 1:11 p.m.5 views

CVE-2026-43291 net: nfc: nci: Fix parameter validation for packet data

In the Linux kernel, the following vulnerability has been resolved: net: nfc: nci: Fix parameter validation for packet data Since commit 9c328f54741b "net: nfc: nci: Add parameter validation for packet data" communication with nci nfc chips is not working any more. The mentioned commit tries to f...

8.3CVSS5.8AI score0.00269EPSS
Exploits0References10
susecve
susecve
added 2026/05/08 2:21 a.m.8 views

SUSE CVE-2026-42217

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From versions 3.0.0 to before 3.2.9, 3.3.0 to before 3.3.11, and 3.4.0 to before 3.4.11, readVariableLengthInteger decodes a variable-length integer fro...

6.5CVSS5.8AI score0.00393EPSS
Exploits1References3
ptsecurity
ptsecurity
added 2026/05/08 12:0 a.m.9 views

PT-2026-38933

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the net: nfc: nci component where parameter validation for packet data was incorrectly implemented. A previous attempt to prevent access to uninitialized data failed t...

8.3CVSS5.4AI score0.00269EPSS
Exploits0
nvd
nvd
added 2026/05/07 4:16 a.m.32 views

CVE-2026-42217

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From versions 3.0.0 to before 3.2.9, 3.3.0 to before 3.3.11, and 3.4.0 to before 3.4.11, readVariableLengthInteger decodes a variable-length integer fro...

9.8CVSS0.00393EPSS
Exploits1References3
osv
osv
added 2026/05/07 4:4 a.m.3 views

CVE-2026-42217 OpenEXR: Shift exponent overflow in `readVariableLengthInteger()` (`ImfIDManifest.cpp`)

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From versions 3.0.0 to before 3.2.9, 3.3.0 to before 3.3.11, and 3.4.0 to before 3.4.11, readVariableLengthInteger decodes a variable-length integer fro...

6.3CVSS6AI score0.00393EPSS
Exploits1References5
Rows per page
Query Builder