Podatność CVE-2023-50245


Publikacja: 2023-12-11   Modyfikacja: 2023-12-14

Opis:
OpenEXR-viewer is a viewer for OpenEXR files with detailed metadata probing. Versions prior to 0.6.1 have a memory overflow vulnerability. This issue is fixed in version 0.6.1.

Typ:

CWE-120

(Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'))

Affected software
Afichet -> Openexr viewer 

 Referencje:
https://github.com/afichet/openexr-viewer/security/advisories/GHSA-99jg-r3f4-rpxj
https://github.com/afichet/openexr-viewer/commit/d0a7e85dfeb519951fb8a8d70f73f30d41cdd3d9

Copyright 2024, cxsecurity.com

 

Back to Top