2.5.3

DATE	CVE	VULNERABILITY TITLE	RISK
2024-02-01	CVE-2023-5841	Out-of-bounds Write vulnerability in Openexr Due to a failure in validating the number of scanline samples of a OpenEXR file containing deep scanline data, Academy Software Foundation OpenEX image parsing library version 3.2.1 and prior is susceptible to a heap-based buffer overflow vulnerability. network low complexity openexr CWE-787 critical	9.1
2022-08-23	CVE-2021-20298	Out-of-bounds Write vulnerability in multiple products A flaw was found in OpenEXR's B44Compressor. network low complexity openexr debian CWE-787	7.5
2022-08-23	CVE-2021-20304	Unspecified vulnerability in Openexr A flaw was found in OpenEXR's hufDecode functionality. network low complexity openexr	7.5
2022-03-25	CVE-2021-3933	An integer overflow could occur when OpenEXR processes a crafted file on systems where size_t < 64 bits. local low complexity openexr fedoraproject debian	5.5
2022-03-16	CVE-2021-20299	A flaw was found in OpenEXR's Multipart input file functionality. network low complexity openexr debian	7.5
2022-03-04	CVE-2021-20300	A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. local low complexity openexr debian	5.5
2022-03-04	CVE-2021-20302	A flaw was found in OpenEXR's TiledInputFile functionality. local low complexity openexr debian	5.5
2022-03-04	CVE-2021-20303	A flaw found in function dataWindowForTile() of IlmImf/ImfTiledMisc.cpp. local low complexity openexr debian	6.1
2021-08-25	CVE-2021-3605	There's a flaw in OpenEXR's rleUncompress functionality in versions prior to 3.0.5. local low complexity openexr redhat debian	5.5
2021-07-06	CVE-2021-3598	There's a flaw in OpenEXR's ImfDeepScanLineInputFile functionality in versions prior to 3.0.5. local low complexity openexr redhat debian	5.5