VYPR

rpm package

suse/openexr&distro=SUSE Linux Enterprise Software Development Kit 12 SP3

pkg:rpm/suse/openexr&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3

Vulnerabilities (3)

  • CVE-2017-12596HigAug 7, 2017
    affected < 2.1.0-6.3.1fixed 2.1.0-6.3.1

    In OpenEXR 2.2.0, a crafted image causes a heap-based buffer over-read in the hufDecode function in IlmImf/ImfHuf.cpp during exrmaketiled execution; it may result in denial of service or possibly unspecified other impact.

  • CVE-2017-9114MedMay 21, 2017
    affected < 2.1.0-6.3.1fixed 2.1.0-6.3.1

    In OpenEXR 2.2.0, an invalid read of size 1 in the refill function in ImfFastHuf.cpp could cause the application to crash.

  • CVE-2017-9110MedMay 21, 2017
    affected < 2.1.0-6.3.1fixed 2.1.0-6.3.1

    In OpenEXR 2.2.0, an invalid read of size 2 in the hufDecode function in ImfHuf.cpp could cause the application to crash.