Information on source package openexr

Available versions

ReleaseVersion
wheezy1.6.1-6
jessie1.6.1-8
stretch2.2.0-11
buster2.2.0-11
sid2.2.0-11

Open issues

BugwheezyjessiestretchbustersidDescription
CVE-2017-9116vulnerablevulnerablevulnerablevulnerablevulnerableIn OpenEXR 2.2.0, an invalid read of size 1 in the uncompress function ...
CVE-2017-9115vulnerable (no DSA)vulnerablevulnerablevulnerablevulnerableIn OpenEXR 2.2.0, an invalid write of size 2 in the = operator function ...
CVE-2017-9114vulnerable (no DSA)vulnerablevulnerablevulnerablevulnerableIn OpenEXR 2.2.0, an invalid read of size 1 in the refill function in ...
CVE-2017-9113vulnerable (no DSA)vulnerablevulnerablevulnerablevulnerableIn OpenEXR 2.2.0, an invalid write of size 1 in the bufferedReadPixels ...
CVE-2017-9112vulnerablevulnerablevulnerablevulnerablevulnerableIn OpenEXR 2.2.0, an invalid read of size 1 in the getBits function in ...
CVE-2017-9111vulnerable (no DSA)vulnerablevulnerablevulnerablevulnerableIn OpenEXR 2.2.0, an invalid write of size 8 in the storeSSE function ...
CVE-2017-9110vulnerablevulnerablevulnerablevulnerablevulnerableIn OpenEXR 2.2.0, an invalid read of size 2 in the hufDecode function ...

Resolved issues

BugDescription
CVE-2009-1722Heap-based buffer overflow in the compression implementation in ...
CVE-2009-1721The decompression implementation in the Imf::hufUncompress function in ...
CVE-2009-1720Multiple integer overflows in OpenEXR 1.2.2 and 1.6.1 allow ...

Security announcements

DSA / DLADescription
DSA-1842-1openexr - several vulnerabilities
DSA-1842-1openexr - several vulnerabilities

Search for package or bug name: Reporting problems