← All advisories

Unrated severityOSV Advisory· Published Jun 11, 2018· Updated Aug 5, 2024

CVE-2018-12092

CVE-2018-12092

Description

tinyexr 0.9.5 has a heap-based buffer over-read in tinyexr::DecodePixelData in tinyexr.h, related to OpenEXR code.

Affected products

2

Syoyo/TinyexrOSV2 versions
v0.9.0, v0.9.5+ 1 more
- (no CPE)range: v0.9.0, v0.9.5
- (no CPE)range: =0.9.5

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

github.com/syoyo/tinyexr/issues/78mitrex_refsource_MISC

News mentions

0

No linked articles in our index yet.