« List of all CVEs

CVE-2021-26945

Published: 6/8/2021 Last updated: 8/3/2024 Reserved: 4/22/2021

An integer overflow leading to a heap-buffer overflow was found in OpenEXR in versions before 3.0.1. An attacker could use this flaw to crash an application compiled with OpenEXR.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Opam packages affected (1)

conf-openimageio

Products affected (1)

Product Vendor Version
OpenEXR n/a <= 1.00(AAFR.4)C0_20170615

References (2)