There is a flaw in OpenEXR in versions before 3.0.0-beta. An attacker who can submit a crafted file to be processed by OpenEXR could cause an integer overflow, potentially leading to problems with application availability.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "2.2.0-10ubuntu2.6", "binary_name": "libopenexr-dev" }, { "binary_version": "2.2.0-10ubuntu2.6", "binary_name": "libopenexr22" }, { "binary_version": "2.2.0-10ubuntu2.6", "binary_name": "libopenexr22-dbgsym" }, { "binary_version": "2.2.0-10ubuntu2.6", "binary_name": "openexr" }, { "binary_version": "2.2.0-10ubuntu2.6", "binary_name": "openexr-dbgsym" }, { "binary_version": "2.2.0-10ubuntu2.6", "binary_name": "openexr-doc" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "2.2.0-11.1ubuntu1.6", "binary_name": "libopenexr-dev" }, { "binary_version": "2.2.0-11.1ubuntu1.6", "binary_name": "libopenexr22" }, { "binary_version": "2.2.0-11.1ubuntu1.6", "binary_name": "libopenexr22-dbgsym" }, { "binary_version": "2.2.0-11.1ubuntu1.6", "binary_name": "openexr" }, { "binary_version": "2.2.0-11.1ubuntu1.6", "binary_name": "openexr-dbgsym" }, { "binary_version": "2.2.0-11.1ubuntu1.6", "binary_name": "openexr-doc" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "2.3.0-6ubuntu0.5", "binary_name": "libopenexr-dev" }, { "binary_version": "2.3.0-6ubuntu0.5", "binary_name": "libopenexr24" }, { "binary_version": "2.3.0-6ubuntu0.5", "binary_name": "libopenexr24-dbgsym" }, { "binary_version": "2.3.0-6ubuntu0.5", "binary_name": "openexr" }, { "binary_version": "2.3.0-6ubuntu0.5", "binary_name": "openexr-dbgsym" }, { "binary_version": "2.3.0-6ubuntu0.5", "binary_name": "openexr-doc" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "2.5.7-1", "binary_name": "libopenexr-dev" }, { "binary_version": "2.5.7-1", "binary_name": "libopenexr25" }, { "binary_version": "2.5.7-1", "binary_name": "libopenexr25-dbgsym" }, { "binary_version": "2.5.7-1", "binary_name": "openexr" }, { "binary_version": "2.5.7-1", "binary_name": "openexr-dbgsym" }, { "binary_version": "2.5.7-1", "binary_name": "openexr-doc" } ] }