AVG-2107 log

Package openexr
Status Fixed
Severity Medium
Type arbitrary code execution
Affected 2.4.0-7
Fixed 2.4.1-1
Current 3.3.2-1 [extra]
Ticket None
Created Sun Jun 27 08:13:40 2021
Issue Severity Remote Type Description
CVE-2021-3605 Medium Yes Arbitrary code execution
A heap-buffer overflow was found in the rleUncompress function of OpenEXR before version 2.4.1. An attacker could use this flaw to execute arbitrary code...