CVE-2021-26945

Опубликовано: 08 июн. 2021

Источник: ubuntu

Приоритет: negligible

EPSS Низкий

CVSS2: 4.3

CVSS3: 5.5

Описание

An integer overflow leading to a heap-buffer overflow was found in OpenEXR in versions before 3.0.1. An attacker could use this flaw to crash an application compiled with OpenEXR.

Релиз	Статус	Примечание
bionic	not-affected	code not present
devel	needs-triage
esm-apps/focal	needs-triage
esm-apps/jammy	needs-triage
esm-apps/noble	needs-triage
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	code not present
esm-infra/xenial	not-affected	code not present
focal	ignored	end of standard support, was needs-triage
groovy	ignored	end of life

Показывать по

Ссылки на источники

EPSS

Процентиль: 49%

0.00256

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2021-26945

CVSS3: 5.5

redhat

почти 5 лет назад

An integer overflow leading to a heap-buffer overflow was found in OpenEXR in versions before 3.0.1. An attacker could use this flaw to crash an application compiled with OpenEXR.

CVE-2021-26945

CVSS3: 5.5

nvd

больше 4 лет назад

An integer overflow leading to a heap-buffer overflow was found in OpenEXR in versions before 3.0.1. An attacker could use this flaw to crash an application compiled with OpenEXR.

CVE-2021-26945

CVSS3: 5.5

debian

больше 4 лет назад

An integer overflow leading to a heap-buffer overflow was found in Ope ...

GHSA-h5g9-4xw7-698r

CVSS3: 5.5

github

больше 3 лет назад

An integer overflow leading to a heap-buffer overflow was found in OpenEXR in versions before 3.0.1. An attacker could use this flaw to crash an application compiled with OpenEXR.

EPSS

Процентиль: 49%

0.00256

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

CVE-2021-26945

Описание

Пакет openexr

Ссылки на источники

Связанные уязвимости