UbuntuUpdates.org

Bugs fixes in "openexr"

Origin Bug number Title Date fixed
CVE CVE-2021-26260 An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. An attacker could use this 2021-06-22
CVE CVE-2021-23215 An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. An attacker could use this 2021-06-22
CVE CVE-2021-20296 A flaw was found in OpenEXR in versions before 3.0.0-beta. A crafted input file supplied by an attacker, that is processed by the Dwa decompression f 2021-06-22
CVE CVE-2021-3605 Heap buffer overflow in the rleUncompress function 2021-06-22
CVE CVE-2021-26260 An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. An attacker could use this 2021-06-22
CVE CVE-2021-23215 An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. An attacker could use this 2021-06-22
CVE CVE-2021-20296 A flaw was found in OpenEXR in versions before 3.0.0-beta. A crafted input file supplied by an attacker, that is processed by the Dwa decompression f 2021-06-22
CVE CVE-2021-3605 Heap buffer overflow in the rleUncompress function 2021-06-22
CVE CVE-2021-26260 An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. An attacker could use this 2021-06-22
CVE CVE-2021-23215 An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. An attacker could use this 2021-06-22
CVE CVE-2021-20296 A flaw was found in OpenEXR in versions before 3.0.0-beta. A crafted input file supplied by an attacker, that is processed by the Dwa decompression f 2021-06-22
CVE CVE-2021-3605 Heap buffer overflow in the rleUncompress function 2021-06-22
CVE CVE-2021-26260 An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. An attacker could use this 2021-06-22
CVE CVE-2021-23215 An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. An attacker could use this 2021-06-22
CVE CVE-2021-20296 A flaw was found in OpenEXR in versions before 3.0.0-beta. A crafted input file supplied by an attacker, that is processed by the Dwa decompression f 2021-06-22
CVE CVE-2021-3605 Heap buffer overflow in the rleUncompress function 2021-06-22
CVE CVE-2021-3479 There's a flaw in OpenEXR's Scanline API functionality in versions bef ... 2021-04-01
CVE CVE-2021-3478 There's a flaw in OpenEXR's scanline input file functionality in versi ... 2021-04-01
CVE CVE-2021-3477 There's a flaw in OpenEXR's deep tile sample size calculations in vers ... 2021-04-01
CVE CVE-2021-3476 A flaw was found in OpenEXR's B44 uncompression functionality in versions before 3.0.0-beta. An attacker who is able to submit a crafted file to Open 2021-04-01



About   -   Send Feedback to @ubuntu_updates