rpm package
suse/openexr&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2
pkg:rpm/suse/openexr&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-12596 | Hig | 7.8 | < 2.1.0-6.3.1 | 2.1.0-6.3.1 | Aug 7, 2017 | In OpenEXR 2.2.0, a crafted image causes a heap-based buffer over-read in the hufDecode function in IlmImf/ImfHuf.cpp during exrmaketiled execution; it may result in denial of service or possibly unspecified other impact. | |
| CVE-2017-9114 | Med | 6.5 | < 2.1.0-6.3.1 | 2.1.0-6.3.1 | May 21, 2017 | In OpenEXR 2.2.0, an invalid read of size 1 in the refill function in ImfFastHuf.cpp could cause the application to crash. | |
| CVE-2017-9110 | Med | 6.5 | < 2.1.0-6.3.1 | 2.1.0-6.3.1 | May 21, 2017 | In OpenEXR 2.2.0, an invalid read of size 2 in the hufDecode function in ImfHuf.cpp could cause the application to crash. |
- affected < 2.1.0-6.3.1fixed 2.1.0-6.3.1
In OpenEXR 2.2.0, a crafted image causes a heap-based buffer over-read in the hufDecode function in IlmImf/ImfHuf.cpp during exrmaketiled execution; it may result in denial of service or possibly unspecified other impact.
- affected < 2.1.0-6.3.1fixed 2.1.0-6.3.1
In OpenEXR 2.2.0, an invalid read of size 1 in the refill function in ImfFastHuf.cpp could cause the application to crash.
- affected < 2.1.0-6.3.1fixed 2.1.0-6.3.1
In OpenEXR 2.2.0, an invalid read of size 2 in the hufDecode function in ImfHuf.cpp could cause the application to crash.