Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2021-3475

Опубликовано: 30 мар. 2021
Источник: ubuntu
Приоритет: medium
CVSS2: 5
CVSS3: 5.3

Описание

There is a flaw in OpenEXR in versions before 3.0.0-beta. An attacker who can submit a crafted file to be processed by OpenEXR could cause an integer overflow, potentially leading to problems with application availability.

РелизСтатусПримечание
bionic

released

2.2.0-11.1ubuntu1.6
devel

not-affected

2.5.7-1
esm-apps/focal

released

2.3.0-6ubuntu0.5
esm-apps/jammy

not-affected

2.5.7-1
esm-infra-legacy/trusty

DNE

esm-infra/bionic

released

2.2.0-11.1ubuntu1.6
esm-infra/xenial

released

2.2.0-10ubuntu2.6
focal

released

2.3.0-6ubuntu0.5
groovy

released

2.5.3-2ubuntu0.2
hirsute

not-affected

2.5.4-1

Показывать по

Ссылки на источники

5 Medium

CVSS2

5.3 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2021-3475

CVSS3: 5.3
redhat
почти 5 лет назад

There is a flaw in OpenEXR in versions before 3.0.0-beta. An attacker who can submit a crafted file to be processed by OpenEXR could cause an integer overflow, potentially leading to problems with application availability.

nvd логотип

CVE-2021-3475

CVSS3: 5.3
nvd
почти 5 лет назад

There is a flaw in OpenEXR in versions before 3.0.0-beta. An attacker who can submit a crafted file to be processed by OpenEXR could cause an integer overflow, potentially leading to problems with application availability.

debian логотип

CVE-2021-3475

CVSS3: 5.3
debian
почти 5 лет назад

There is a flaw in OpenEXR in versions before 3.0.0-beta. An attacker ...

github логотип

GHSA-f6vh-h3m7-7676

CVSS3: 5.3
github
больше 3 лет назад

There is a flaw in OpenEXR in versions before 3.0.0-beta. An attacker who can submit a crafted file to be processed by OpenEXR could cause an integer overflow, potentially leading to problems with application availability.

fstec логотип

BDU:2021-01983

CVSS3: 5.3
fstec
больше 5 лет назад

Уязвимость функции calculateNumTiles()(OpenEXR/IlmImf/ImfTiledMisc.cpp) библиотеки OpenEXR, позволяющая нарушителю вызвать отказ в обслуживании

5 Medium

CVSS2

5.3 Medium

CVSS3

Уязвимость CVE-2021-3475