A heap-buffer overflow was found in the copyIntoFrameBuffer function of OpenEXR in versions prior to 3.0.1. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled against OpenEXR.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openexr openexr |
||
fedoraproject fedora 33 |
||
fedoraproject fedora 34 |