Medium severity5.5NVD Advisory· Published Apr 14, 2020· Updated Jun 17, 2026
CVE-2020-11759
CVE-2020-11759
Description
An issue was discovered in OpenEXR before 2.4.1. Because of integer overflows in CompositeDeepScanLine::Data::handleDeepFrameBuffer and readSampleCountForLineBlock, an attacker can write to an out-of-bounds pointer.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- OpenEXR/OpenEXRdescription
- Range: <2.4.1
- Range: <2.4.1
Patches
Vulnerability mechanics
References
15- bugs.chromium.org/p/project-zero/issues/detailnvdExploitThird Party Advisory
- github.com/AcademySoftwareFoundation/openexr/blob/master/CHANGES.mdnvdRelease NotesThird Party Advisory
- github.com/AcademySoftwareFoundation/openexr/releases/tag/v2.4.1nvdRelease NotesThird Party Advisory
- lists.debian.org/debian-lts-announce/2020/08/msg00056.htmlnvdMailing ListThird Party Advisory
- security.gentoo.org/glsa/202107-27nvdThird Party Advisory
- support.apple.com/kb/HT211288nvdThird Party Advisory
- support.apple.com/kb/HT211289nvdThird Party Advisory
- support.apple.com/kb/HT211290nvdThird Party Advisory
- support.apple.com/kb/HT211291nvdThird Party Advisory
- support.apple.com/kb/HT211293nvdThird Party Advisory
- support.apple.com/kb/HT211294nvdThird Party Advisory
- support.apple.com/kb/HT211295nvdThird Party Advisory
- usn.ubuntu.com/4339-1/nvdThird Party Advisory
- www.debian.org/security/2020/dsa-4755nvdThird Party Advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F4KFGDQG5PVYAU7TS5MZ7XCS6EMPVII3/nvd
News mentions
0No linked articles in our index yet.