Showing 1 - 3 of 3

CVE-2021-3941

Status Candidate

Overview

In ImfChromaticities.cpp routine RGBtoXYZ(), there are some division operations such as `float Z = (1 - chroma.white.x - chroma.white.y) * Y / chroma.white.y;` and `chroma.green.y * (X + Z))) / d;` but the divisor is not checked for a 0 value. A specially crafted file could trigger a divide-by-zero condition which could affect the availability of programs linked with OpenEXR.

Related Files

Debian Security Advisory 5299-1: Posted Dec 11, 2022; Authored by Debian | Site debian.org; Debian Linux Security Advisory 5299-1 - Multiple security vulnerabilities have been found in OpenEXR, command-line tools and a library for the OpenEXR image format. Buffer overflows or out-of-bound reads could lead to a denial of service (application crash) if a malformed image file is processed.; tags | advisory, denial of service, overflow, vulnerability; systems | linux, debian; advisories | CVE-2021-23215, CVE-2021-26260, CVE-2021-3598, CVE-2021-3605, CVE-2021-3933, CVE-2021-3941, CVE-2021-45942; SHA-256 | 7f4d3631413d2ef484ca90cf94efbde5b213df06ad33de148b8d14d09f721fd7; Download | Favorite | View

Gentoo Linux Security Advisory 202210-31: Posted Oct 31, 2022; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 202210-31 - Multiple vulnerabilities have been discovered in OpenEXR, the worst of which could result in arbitrary code execution. Versions less than 3.1.5 are affected.; tags | advisory, arbitrary, vulnerability, code execution; systems | linux, gentoo; advisories | CVE-2021-20304, CVE-2021-23169, CVE-2021-3598, CVE-2021-3605, CVE-2021-3933, CVE-2021-3941, CVE-2021-45942; SHA-256 | 742933db53305617f957ea035a21cf86bd376a21134fa31149ac0272c00d2cf1; Download | Favorite | View

Ubuntu Security Notice USN-5150-1: Posted Nov 18, 2021; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5150-1 - It was discovered that OpenEXR incorrectly handled certain EXR image files. An attacker could possibly use this issue to cause a crash.; tags | advisory; systems | linux, ubuntu; advisories | CVE-2021-3941; SHA-256 | a1c19126d3078b5ddc89267a23f5b56141202f056eb2d5c95e54a0aacafcd6ed; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 225 files
indoushka 176 files
Ubuntu 94 files
Gentoo 32 files
Debian 16 files
Matthias Deeg 11 files
Chris Beiter 11 files
Frederik Beimgraben 11 files
Apple 10 files
malvuln 8 files

File Archives

Systems

AIX (430)
Apple (2,115)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,132)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,599)
HPUX (881)
iOS (390)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,415)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (16,936)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,896)
UNIX (9,464)
UnixWare (188)
Windows (6,782)
Other

CVE-2021-3941

Overview

Related Files

File Archive:

October 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems