OESA-2021-1238

An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. An attacker could use this flaw to crash an application compiled with OpenEXR. This is a different flaw from CVE-2021-23215.(CVE-2021-26260)

A heap-buffer overflow was found in the copyIntoFrameBuffer function of OpenEXR in versions before 3.0.1. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled against OpenEXR.(CVE-2021-23169)

Database specific

{
    "severity": "High"
}

References

Affected packages

openEuler:20.03-LTS-SP1 / OpenEXR

Package

Name: OpenEXR
Purl: pkg:rpm/openEuler/OpenEXR&distro=openEuler-20.03-LTS-SP1

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.2.0-20.oe1

Ecosystem specific

{
    "src": [
        "OpenEXR-2.2.0-20.oe1.src.rpm"
    ],
    "aarch64": [
        "OpenEXR-devel-2.2.0-20.oe1.aarch64.rpm",
        "OpenEXR-2.2.0-20.oe1.aarch64.rpm",
        "OpenEXR-libs-2.2.0-20.oe1.aarch64.rpm",
        "OpenEXR-debugsource-2.2.0-20.oe1.aarch64.rpm",
        "OpenEXR-debuginfo-2.2.0-20.oe1.aarch64.rpm"
    ],
    "x86_64": [
        "OpenEXR-2.2.0-20.oe1.x86_64.rpm",
        "OpenEXR-libs-2.2.0-20.oe1.x86_64.rpm",
        "OpenEXR-devel-2.2.0-20.oe1.x86_64.rpm",
        "OpenEXR-debugsource-2.2.0-20.oe1.x86_64.rpm",
        "OpenEXR-debuginfo-2.2.0-20.oe1.x86_64.rpm"
    ]
}