CVE-2021-3605 log

Severity Medium
Remote Yes
Type Arbitrary code execution
A heap-buffer overflow was found in the rleUncompress function of OpenEXR before version 2.4.1. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled against OpenEXR.
Group Package Affected Fixed Severity Status Ticket
AVG-2107 openexr 2.4.0-7 2.4.1-1 Medium Fixed