Описание
Security update for OpenEXR
This update for OpenEXR fixes the following issues:
- CVE-2021-20298: Fixed out-of-memory in B44Compressor (bsc#1188460).
- CVE-2021-20300: Fixed integer-overflow in Imf_2_5:hufUncompress (bsc#1188458).
- CVE-2021-20303: Fixed heap-buffer-overflow in Imf_2_5::copyIntoFrameBuffe (bsc#1188457).
- CVE-2021-20304: Fixed undefined-shift in Imf_2_5:hufDecode (bsc#1188461).
- CVE-2021-3941: Fixed divide-by-zero in Imf_3_1:RGBtoXYZ (bsc#1192556).
Список пакетов
SUSE Linux Enterprise Point of Sale 11 SP3
SUSE Linux Enterprise Server 11 SP4-LTSS
Ссылки
- Link for SUSE-SU-2021:14846-1
- E-Mail link for SUSE-SU-2021:14846-1
- SUSE Security Ratings
- SUSE Bug 1188457
- SUSE Bug 1188458
- SUSE Bug 1188460
- SUSE Bug 1188461
- SUSE Bug 1192556
- SUSE CVE CVE-2021-20298 page
- SUSE CVE CVE-2021-20300 page
- SUSE CVE CVE-2021-20303 page
- SUSE CVE CVE-2021-20304 page
- SUSE CVE CVE-2021-3941 page
Описание
A flaw was found in OpenEXR's B44Compressor. This flaw allows an attacker who can submit a crafted file to be processed by OpenEXR, to exhaust all memory accessible to the application. The highest threat from this vulnerability is to system availability.
Затронутые продукты
Ссылки
- CVE-2021-20298
- SUSE Bug 1188460
- SUSE Bug 1191176
Описание
A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. This flaw allows an attacker who can submit a crafted file that is processed by OpenEXR, to trigger an integer overflow. The highest threat from this vulnerability is to system availability.
Затронутые продукты
Ссылки
- CVE-2021-20300
- SUSE Bug 1188458
- SUSE Bug 1191176
Описание
A flaw found in function dataWindowForTile() of IlmImf/ImfTiledMisc.cpp. An attacker who is able to submit a crafted file to be processed by OpenEXR could trigger an integer overflow, leading to an out-of-bounds write on the heap. The greatest impact of this flaw is to application availability, with some potential impact to data integrity as well.
Затронутые продукты
Ссылки
- CVE-2021-20303
- SUSE Bug 1188457
- SUSE Bug 1191176
Описание
A flaw was found in OpenEXR's hufDecode functionality. This flaw allows an attacker who can pass a crafted file to be processed by OpenEXR, to trigger an undefined right shift error. The highest threat from this vulnerability is to system availability.
Затронутые продукты
Ссылки
- CVE-2021-20304
- SUSE Bug 1188461
- SUSE Bug 1191176
Описание
In ImfChromaticities.cpp routine RGBtoXYZ(), there are some division operations such as `float Z = (1 - chroma.white.x - chroma.white.y) * Y / chroma.white.y;` and `chroma.green.y * (X + Z))) / d;` but the divisor is not checked for a 0 value. A specially crafted file could trigger a divide-by-zero condition which could affect the availability of programs linked with OpenEXR.
Затронутые продукты
Ссылки
- CVE-2021-3941
- SUSE Bug 1192556