CVE-2022-38529

Опубликовано: 06 сент. 2022

Источник: debian

EPSS Низкий

Описание

tinyexr commit 0647fb3 was discovered to contain a heap-buffer overflow via the component rleUncompress.

Пакет	Статус	Версия исправления	Релиз	Тип
tinyexr	fixed	1.0.1+dfsg-4		package
tinyexr	fixed	1.0.0+dfsg-1+deb11u1	bullseye	package

https://github.com/syoyo/tinyexr/issues/169
https://github.com/syoyo/tinyexr/commit/82984a37d1dba67000a35b083b26df5e57a2bb72

EPSS

Процентиль: 20%

0.00064

Низкий

CVE-2022-38529

CVSS3: 7.8

ubuntu

больше 3 лет назад

tinyexr commit 0647fb3 was discovered to contain a heap-buffer overflow via the component rleUncompress.

CVE-2022-38529

CVSS3: 7.8

nvd

больше 3 лет назад

tinyexr commit 0647fb3 was discovered to contain a heap-buffer overflow via the component rleUncompress.

GHSA-7xrv-xxvm-f2hx

CVSS3: 7.8

github

больше 3 лет назад

tinyexr commit 0647fb3 was discovered to contain a heap-buffer overflow via the component rleUncompress.

EPSS

Процентиль: 20%

0.00064

Низкий