An issue in Academy Software Foundation openexr v.3.2.3 and before allows a local attacker to cause a denial of service (DoS) via the convert function of exrmultipart.cpp.
-
| Package | Type | OS Name | OS Version | Affected Ranges | Fix Versions |
|---|---|---|---|---|---|
| debian/openexr | deb | debian | 12 | >=3.1.5-5 | Not yet available |
| debian/openexr | deb | debian | 13 | >=3.1.5-5.1 | Not yet available |
| debian/openexr | deb | debian | 11 | >=2.5.4-2+deb11u1 | Not yet available |
| debian/openexr | deb | debian | 10 | >=2.2.1-4.1+deb10u1 | Not yet available |
| debian/openexr | deb | debian | unstable | >=3.1.5-5.1 | Not yet available |
Severity and metrics
No CVSS data available from this source.
-
-