Описание
An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. An attacker could use this flaw to crash an application compiled with OpenEXR.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 2.2.0-11.1ubuntu1.7 |
| devel | not-affected | 2.5.7-1 |
| esm-apps/focal | released | 2.3.0-6ubuntu0.5+esm1 |
| esm-apps/jammy | not-affected | 2.5.7-1 |
| esm-apps/noble | not-affected | 2.5.7-1 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | released | 2.2.0-11.1ubuntu1.7 |
| esm-infra/xenial | released | 2.2.0-10ubuntu2.6+esm1 |
| focal | ignored | end of standard support, was needed |
| groovy | ignored | end of life |
Показывать по
Ссылки на источники
EPSS
4.3 Medium
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. An attacker could use this flaw to crash an application compiled with OpenEXR.
An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. An attacker could use this flaw to crash an application compiled with OpenEXR.
An integer overflow leading to a heap-buffer overflow was found in the ...
An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. An attacker could use this flaw to crash an application compiled with OpenEXR.
Уязвимость компонента DwaCompressor программного обеспечения для хранения изображений с широкими динамическими диапазоном яркости OpenEXR, связанная с неконтролируемым расходом ресурсов, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
4.3 Medium
CVSS2
5.5 Medium
CVSS3