CVE-2020-16588

Опубликовано: 09 дек. 2020

Источник: debian

EPSS Низкий

Описание

A Null Pointer Deference issue exists in Academy Software Foundation OpenEXR 2.3.0 in generatePreview in makePreview.cpp that can cause a denial of service via a crafted EXR file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
openexr	fixed	2.5.3-2		package

Примечания

https://github.com/AcademySoftwareFoundation/openexr/commit/74504503cff86e986bac441213c403b0ba28d58f (v2.4.0-beta.1)
https://github.com/AcademySoftwareFoundation/openexr/issues/493

EPSS

Процентиль: 52%

0.00288

Низкий

Связанные уязвимости

CVE-2020-16588

CVSS3: 5.5

ubuntu

около 5 лет назад

A Null Pointer Deference issue exists in Academy Software Foundation OpenEXR 2.3.0 in generatePreview in makePreview.cpp that can cause a denial of service via a crafted EXR file.

CVE-2020-16588

CVSS3: 5.5

redhat

около 5 лет назад

A Null Pointer Deference issue exists in Academy Software Foundation OpenEXR 2.3.0 in generatePreview in makePreview.cpp that can cause a denial of service via a crafted EXR file.

CVE-2020-16588

CVSS3: 5.5

nvd

около 5 лет назад

A Null Pointer Deference issue exists in Academy Software Foundation OpenEXR 2.3.0 in generatePreview in makePreview.cpp that can cause a denial of service via a crafted EXR file.

GHSA-p928-c9c9-qw29

CVSS3: 5.5

github

больше 3 лет назад

A Null Pointer Deference issue exists in Academy Software Foundation OpenEXR 2.3.0 in generatePreview in makePreview.cpp that can cause a denial of service via a crafted EXR file.

BDU:2021-03731

CVSS3: 6.5

fstec

около 5 лет назад

Уязвимость функции generatePreview библиотеки OpenEXR, связанная с ошибками разыменования указателя, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 52%

0.00288

Низкий