CVE-2021-3477 log
Source |
|
Severity | Low |
Remote | No |
Type | Denial of service |
Description | There's a flaw in OpenEXR's deep tile sample size calculations in versions before 2.5.4. An attacker who is able to submit a crafted file to be processed by OpenEXR could trigger an integer overflow, subsequently leading to an out-of-bounds read. |
Group | Package | Affected | Fixed | Severity | Status | Ticket |
---|---|---|---|---|---|---|
AVG-1746 | openexr | 2.5.3-6 | 2.5.4-1 | Low | Fixed |