libtinyexr.so is vulnerable to heap-based buffer overflow. The vulnerability exist in the DecompressRle
function in tinyexr.h
due to lack of address validation, allowing an attacker to cause memory corruption.
CPE | Name | Operator | Version |
---|---|---|---|
libtinyexr.so | eq | 1.0.0 | |
libtinyexr.so | eq | 1.0.0 |