Vulnerabilities > Openexr

DATE CVE VULNERABILITY TITLE RISK
2021-08-25 CVE-2021-3605 Out-of-bounds Read vulnerability in multiple products
There's a flaw in OpenEXR's rleUncompress functionality in versions prior to 3.0.5.
4.3
2021-07-06 CVE-2021-3598 Out-of-bounds Read vulnerability in multiple products
There's a flaw in OpenEXR's ImfDeepScanLineInputFile functionality in versions prior to 3.0.5.
local
low complexity
openexr redhat CWE-125
2.1
2021-06-08 CVE-2021-23169 Out-of-bounds Write vulnerability in multiple products
A heap-buffer overflow was found in the copyIntoFrameBuffer function of OpenEXR in versions before 3.0.1.
6.8
2021-06-08 CVE-2021-23215 Resource Exhaustion vulnerability in multiple products
An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1.
4.3
2021-06-08 CVE-2021-26260 Resource Exhaustion vulnerability in multiple products
An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1.
4.3
2021-06-08 CVE-2021-26945 Resource Exhaustion vulnerability in Openexr
An integer overflow leading to a heap-buffer overflow was found in OpenEXR in versions before 3.0.1.
network
openexr CWE-400
4.3
2021-04-01 CVE-2021-20296 NULL Pointer Dereference vulnerability in Openexr
A flaw was found in OpenEXR in versions before 3.0.0-beta.
network
low complexity
openexr CWE-476
5.0
2021-03-31 CVE-2021-3479 Resource Exhaustion vulnerability in Openexr
There's a flaw in OpenEXR's Scanline API functionality in versions before 3.0.0-beta.
network
openexr CWE-400
4.3
2021-03-31 CVE-2021-3478 Resource Exhaustion vulnerability in Openexr
There's a flaw in OpenEXR's scanline input file functionality in versions before 3.0.0-beta.
network
openexr CWE-400
4.3
2021-03-31 CVE-2021-3477 Integer Overflow or Wraparound vulnerability in Openexr
There's a flaw in OpenEXR's deep tile sample size calculations in versions before 3.0.0-beta.
network
openexr CWE-190
4.3