Do your applications use this vulnerable package?
Test your applications
Overview
In OpenEXR 2.2.0, an invalid read of size 1 in the refill function in ImfFastHuf.cpp could cause the application to crash.
References
CVSS Score
6.5
medium severity
-
Attack VectorNetwork
-
Attack ComplexityLow
-
Privileges RequiredNone
-
User InteractionRequired
-
ScopeUnchanged
-
ConfidentialityNone
-
IntegrityNone
-
AvailabilityHigh
- CVE
- CVE-2017-9114
- Snyk ID
- SNYK-DEBIAN10-OPENEXR-331180
- Disclosed
- 21 May, 2017
- Published
- 21 May, 2017