CVE-2021-23169 log

Source
Severity Medium
Remote No
Type Arbitrary code execution
Description
A buffer overflow security issue has been found in the exrcheck executable of the OpenEXR 3.0.0 beta release. The issue is fixed in  OpenEXR 3.0.1.
Group Package Affected Fixed Severity Status Ticket
AVG-1862 openexr 2.5.5-1 Medium Not affected FS#70555
References
https://github.com/AcademySoftwareFoundation/openexr/pull/872
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28051
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28155
https://github.com/AcademySoftwareFoundation/openexr/commit/ae6d203892cc9311917a7f4f05354ef792b3e58e