Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2021-20296  

A flaw was found in OpenEXR in versions before 2.5.4. A crafted input file supplied by an attacker that is processed by the Dwa decompression functionality of OpenEXR's IlmImf library could cause a NULL pointer dereference.

Source
Severity Low

Remote No

Type Denial of service

Description 

A flaw was found in OpenEXR in versions before 2.5.4. A crafted input file supplied by an attacker that is processed by the Dwa decompression functionality of OpenEXR's IlmImf library could cause a NULL pointer dereference.

AVG-1746 openexr 2.5.3-6 2.5.4-1 Low Fixed 

https://bugzilla.redhat.com/show_bug.cgi?id=1939141
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24854
https://github.com/AcademySoftwareFoundation/openexr/pull/817
https://github.com/AcademySoftwareFoundation/openexr/commit/b0c63c0b96eb9b0d3998f603e12f9f414fb0d44a
https://github.com/AcademySoftwareFoundation/openexr/commit/0c2b46f630a3b5f2f561c2849d047ee39f899179

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started