Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2017-14988

Опубликовано: 27 сент. 2017
Источник: redhat
CVSS3: 3.3

Описание

Header::readfrom in IlmImf/ImfHeader.cpp in OpenEXR 2.2.0 allows remote attackers to cause a denial of service (excessive memory allocation) via a crafted file that is accessed with the ImfOpenInputFile function in IlmImf/ImfCRgbaFile.cpp. NOTE: The maintainer and multiple third parties believe that this vulnerability isn't valid

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6OpenEXRWill not fix
Red Hat Enterprise Linux 7OpenEXRWill not fix
Red Hat Enterprise Linux 9OpenEXRNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-400
https://bugzilla.redhat.com/show_bug.cgi?id=1500351OpenEXR: Excessive memory allocation in Header::readfrom

3.3 Low

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2017-14988

CVSS3: 5.5
ubuntu
больше 8 лет назад

Header::readfrom in IlmImf/ImfHeader.cpp in OpenEXR 2.2.0 allows remote attackers to cause a denial of service (excessive memory allocation) via a crafted file that is accessed with the ImfOpenInputFile function in IlmImf/ImfCRgbaFile.cpp. NOTE: The maintainer and multiple third parties believe that this vulnerability isn't valid

nvd логотип

CVE-2017-14988

CVSS3: 5.5
nvd
больше 8 лет назад

Header::readfrom in IlmImf/ImfHeader.cpp in OpenEXR 2.2.0 allows remote attackers to cause a denial of service (excessive memory allocation) via a crafted file that is accessed with the ImfOpenInputFile function in IlmImf/ImfCRgbaFile.cpp. NOTE: The maintainer and multiple third parties believe that this vulnerability isn't valid

debian логотип

CVE-2017-14988

CVSS3: 5.5
debian
больше 8 лет назад

Header::readfrom in IlmImf/ImfHeader.cpp in OpenEXR 2.2.0 allows remot ...

suse-cvrf логотип

openSUSE-SU-2019:1954-1

suse-cvrf
больше 6 лет назад

Security update for openexr

suse-cvrf логотип

SUSE-SU-2019:2043-1

suse-cvrf
больше 6 лет назад

Security update for openexr

3.3 Low

CVSS3