Vulnerabilities > Openexr > Openexr > 2.5.6
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-02-01 | CVE-2023-5841 | Out-of-bounds Write vulnerability in Openexr Due to a failure in validating the number of scanline samples of a OpenEXR file containing deep scanline data, Academy Software Foundation OpenEX image parsing library version 3.2.1 and prior is susceptible to a heap-based buffer overflow vulnerability. | 9.1 |
2022-08-23 | CVE-2021-20298 | Out-of-bounds Write vulnerability in multiple products A flaw was found in OpenEXR's B44Compressor. | 7.5 |
2022-08-23 | CVE-2021-20304 | Integer Overflow or Wraparound vulnerability in Openexr A flaw was found in OpenEXR's hufDecode functionality. | 7.5 |
2022-03-25 | CVE-2021-3933 | Integer Overflow or Wraparound vulnerability in multiple products An integer overflow could occur when OpenEXR processes a crafted file on systems where size_t < 64 bits. | 5.5 |
2021-08-25 | CVE-2021-3605 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products There's a flaw in OpenEXR's rleUncompress functionality in versions prior to 3.0.5. | 5.5 |
2021-07-06 | CVE-2021-3598 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products There's a flaw in OpenEXR's ImfDeepScanLineInputFile functionality in versions prior to 3.0.5. | 5.5 |
2021-06-08 | CVE-2021-23169 | Out-of-bounds Write vulnerability in multiple products A heap-buffer overflow was found in the copyIntoFrameBuffer function of OpenEXR in versions before 3.0.1. | 8.8 |
2021-06-08 | CVE-2021-23215 | Resource Exhaustion vulnerability in multiple products An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. | 5.5 |
2021-06-08 | CVE-2021-26260 | Resource Exhaustion vulnerability in multiple products An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. | 5.5 |
2021-06-08 | CVE-2021-26945 | Integer Overflow or Wraparound vulnerability in Openexr An integer overflow leading to a heap-buffer overflow was found in OpenEXR in versions before 3.0.1. | 5.5 |