Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2022-03-25	CVE-2021-3933	An integer overflow could occur when OpenEXR processes a crafted file on systems where size_t < 64 bits. local low complexity openexr fedoraproject debian	5.5
2022-03-25	CVE-2021-3941	In ImfChromaticities.cpp routine RGBtoXYZ(), there are some division operations such as `float Z = (1 - chroma.white.x - chroma.white.y) * Y / chroma.white.y;` and `chroma.green.y * (X + Z))) / d;` but the divisor is not checked for a 0 value. local low complexity openexr redhat fedoraproject debian	6.5
2022-03-04	CVE-2021-20300	A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. local low complexity openexr debian	5.5
2022-03-04	CVE-2021-20302	A flaw was found in OpenEXR's TiledInputFile functionality. local low complexity openexr debian	5.5
2022-03-04	CVE-2021-20303	A flaw found in function dataWindowForTile() of IlmImf/ImfTiledMisc.cpp. local low complexity openexr debian	6.1
2022-01-01	CVE-2021-45942	Out-of-bounds Write vulnerability in multiple products OpenEXR 3.1.x before 3.1.4 has a heap-based buffer overflow in Imf_3_1::LineCompositeTask::execute (called from IlmThread_3_1::NullThreadPoolProvider::addTask and IlmThread_3_1::ThreadPool::addGlobalTask). local low complexity openexr fedoraproject debian CWE-787	5.5
2021-08-25	CVE-2021-3605	There's a flaw in OpenEXR's rleUncompress functionality in versions prior to 3.0.5. local low complexity openexr redhat debian	5.5
2021-07-06	CVE-2021-3598	There's a flaw in OpenEXR's ImfDeepScanLineInputFile functionality in versions prior to 3.0.5. local low complexity openexr redhat debian	5.5
2021-06-08	CVE-2021-23215	An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. local low complexity openexr fedoraproject debian	5.5
2021-06-08	CVE-2021-26260	An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. local low complexity openexr fedoraproject debian	5.5