Описание
A heap-based buffer overflow vulnerability exists in Academy Software Foundation OpenEXR 2.3.0 in chunkOffsetReconstruction in ImfMultiPartInputFile.cpp that can cause a denial of service via a crafted EXR file.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 2.2.0-11.1ubuntu1.4 |
| devel | not-affected | |
| esm-apps/focal | released | 2.3.0-6ubuntu0.3 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | released | 2.2.0-11.1ubuntu1.4 |
| esm-infra/xenial | released | 2.2.0-10ubuntu2.4 |
| focal | released | 2.3.0-6ubuntu0.3 |
| groovy | not-affected | 2.5.3-2 |
| precise/esm | DNE | |
| trusty | ignored | end of standard support |
Показывать по
4.3 Medium
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
A heap-based buffer overflow vulnerability exists in Academy Software Foundation OpenEXR 2.3.0 in chunkOffsetReconstruction in ImfMultiPartInputFile.cpp that can cause a denial of service via a crafted EXR file.
A heap-based buffer overflow vulnerability exists in Academy Software Foundation OpenEXR 2.3.0 in chunkOffsetReconstruction in ImfMultiPartInputFile.cpp that can cause a denial of service via a crafted EXR file.
A heap-based buffer overflow vulnerability exists in Academy Software ...
A heap-based buffer overflow vulnerability exists in Academy Software Foundation OpenEXR 2.3.0 in chunkOffsetReconstruction in ImfMultiPartInputFile.cpp that can cause a denial of service via a crafted EXR file.
Уязвимость компонента ImfMultiPartInputFile формата графического формата для хранения изображений OpenEXR, связанная с записью за границами буфера, позволяющая нарушителю вызвать отказ в обслуживании
4.3 Medium
CVSS2
5.5 Medium
CVSS3