Unrated severityNVD Advisory· Published Jul 31, 2009· Updated Apr 23, 2026
CVE-2009-1722
CVE-2009-1722
Description
Heap-based buffer overflow in the compression implementation in OpenEXR 1.2.2 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
15- security.debian.org/pool/updates/main/o/openexr/openexr_1.2.2-4.3+etch2.diff.gznvdPatch
- www.debian.org/security/2009/dsa-1842nvdPatch
- www.securityfocus.com/bid/35838nvdPatch
- secunia.com/advisories/36032nvdVendor Advisory
- www.vupen.com/english/advisories/2009/2035nvdVendor Advisory
- www.us-cert.gov/cas/techalerts/TA09-218A.htmlnvdUS Government Resource
- lists.apple.com/archives/security-announce/2009/Aug/msg00001.htmlnvd
- secunia.com/advisories/36096nvd
- secunia.com/advisories/36753nvd
- support.apple.com/kb/HT3757nvd
- www.mandriva.com/security/advisoriesnvd
- www.securitytracker.com/idnvd
- www.ubuntu.com/usn/USN-831-1nvd
- www.vupen.com/english/advisories/2009/2172nvd
- github.com/openexr/openexr/blob/master/CHANGES.mdnvd
News mentions
0No linked articles in our index yet.