Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2021-3474

Опубликовано: 30 мар. 2021
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 5
CVSS3: 5.3

Описание

There's a flaw in OpenEXR in versions before 3.0.0-beta. A crafted input file that is processed by OpenEXR could cause a shift overflow in the FastHufDecoder, potentially leading to problems with application availability.

РелизСтатусПримечание
bionic

released

2.2.0-11.1ubuntu1.6
devel

not-affected

2.5.7-1
esm-apps/focal

released

2.3.0-6ubuntu0.5
esm-apps/jammy

not-affected

2.5.7-1
esm-infra-legacy/trusty

DNE

esm-infra/bionic

released

2.2.0-11.1ubuntu1.6
esm-infra/xenial

released

2.2.0-10ubuntu2.6
focal

released

2.3.0-6ubuntu0.5
groovy

released

2.5.3-2ubuntu0.2
hirsute

not-affected

2.5.4-1

Показывать по

Ссылки на источники

EPSS

Процентиль: 77%
0.0101
Низкий

5 Medium

CVSS2

5.3 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2021-3474

CVSS3: 5.3
redhat
почти 5 лет назад

There's a flaw in OpenEXR in versions before 3.0.0-beta. A crafted input file that is processed by OpenEXR could cause a shift overflow in the FastHufDecoder, potentially leading to problems with application availability.

nvd логотип

CVE-2021-3474

CVSS3: 5.3
nvd
почти 5 лет назад

There's a flaw in OpenEXR in versions before 3.0.0-beta. A crafted input file that is processed by OpenEXR could cause a shift overflow in the FastHufDecoder, potentially leading to problems with application availability.

debian логотип

CVE-2021-3474

CVSS3: 5.3
debian
почти 5 лет назад

There's a flaw in OpenEXR in versions before 3.0.0-beta. A crafted inp ...

github логотип

GHSA-7qrq-27q3-6362

CVSS3: 5.3
github
больше 3 лет назад

There's a flaw in OpenEXR in versions before 3.0.0-beta. A crafted input file that is processed by OpenEXR could cause a shift overflow in the FastHufDecoder, potentially leading to problems with application availability.

fstec логотип

BDU:2021-01984

CVSS3: 5.3
fstec
больше 5 лет назад

Уязвимость функции FastHufDecoder библиотеки OpenEXR, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 77%
0.0101
Низкий

5 Medium

CVSS2

5.3 Medium

CVSS3

Уязвимость CVE-2021-3474