High severity8.8NVD Advisory· Published May 21, 2017· Updated May 13, 2026
CVE-2017-9115
CVE-2017-9115
Description
In OpenEXR 2.2.0, an invalid write of size 2 in the = operator function in half.h could cause the application to crash or execute arbitrary code.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
10- www.openwall.com/lists/oss-security/2017/05/12/5nvdThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2019-07/msg00060.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2019-08/msg00000.htmlnvd
- github.com/openexr/openexr/issues/232nvd
- github.com/openexr/openexr/pull/233nvd
- github.com/openexr/openexr/releases/tag/v2.2.1nvd
- lists.debian.org/debian-lts-announce/2020/08/msg00056.htmlnvd
- usn.ubuntu.com/4148-1/nvd
- usn.ubuntu.com/4339-1/nvd
- www.debian.org/security/2020/dsa-4755nvd
News mentions
0No linked articles in our index yet.