Описание
A flaw was found in OpenEXR's B44 uncompression functionality in versions before 3.0.0-beta. An attacker who is able to submit a crafted file to OpenEXR could trigger shift overflows, potentially affecting application availability.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 2.2.0-11.1ubuntu1.6 |
| devel | not-affected | 2.5.7-1 |
| esm-apps/focal | released | 2.3.0-6ubuntu0.5 |
| esm-apps/jammy | not-affected | 2.5.7-1 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | not-affected | 2.2.0-11.1ubuntu1.6 |
| esm-infra/xenial | not-affected | 2.2.0-10ubuntu2.6 |
| focal | released | 2.3.0-6ubuntu0.5 |
| groovy | released | 2.5.3-2ubuntu0.2 |
| hirsute | not-affected | 2.5.4-1 |
Показывать по
5 Medium
CVSS2
5.3 Medium
CVSS3
Связанные уязвимости
A flaw was found in OpenEXR's B44 uncompression functionality in versions before 3.0.0-beta. An attacker who is able to submit a crafted file to OpenEXR could trigger shift overflows, potentially affecting application availability.
A flaw was found in OpenEXR's B44 uncompression functionality in versions before 3.0.0-beta. An attacker who is able to submit a crafted file to OpenEXR could trigger shift overflows, potentially affecting application availability.
A flaw was found in OpenEXR's B44 uncompression functionality in versi ...
A flaw was found in OpenEXR's B44 uncompression functionality in versions before 3.0.0-beta. An attacker who is able to submit a crafted file to OpenEXR could trigger shift overflows, potentially affecting application availability.
Уязвимость функции сжатия данных B44 (OpenEXR/IlmImf/ImfB44Compressor.cpp) библиотеки OpenEXR, позволяющая нарушителю вызвать отказ в обслуживании
5 Medium
CVSS2
5.3 Medium
CVSS3