Debian Openexr vulnerabilities

CVE-2017-12596 [HIGH] CVE-2017-12596: openexr - In OpenEXR 2.2.0, a crafted image causes a heap-based buffer over-read in the hu... In OpenEXR 2.2.0, a crafted image causes a heap-based buffer over-read in the hufDecode function in IlmImf/ImfHuf.cpp during exrmaketiled execution; it may result in denial of service or possibly unspecified other impact. Scope: local bookworm: resolved (fixed in 2.2.0-11.1) bullseye: resolved (fixed in 2.2.0-11.1) forky: resolved (fixed in 2.2.0-11.1) sid: resolved

CVE-2017-9115 [HIGH] CVE-2017-9115: openexr - In OpenEXR 2.2.0, an invalid write of size 2 in the = operator function in half.... In OpenEXR 2.2.0, an invalid write of size 2 in the = operator function in half.h could cause the application to crash or execute arbitrary code. Scope: local bookworm: resolved (fixed in 2.5.3-2) bullseye: resolved (fixed in 2.5.3-2) forky: resolved (fixed in 2.5.3-2) sid: resolved (fixed in 2.5.3-2) trixie: resolved (fixed in 2.5.3-2)

CVE-2017-9111 [HIGH] CVE-2017-9111: openexr - In OpenEXR 2.2.0, an invalid write of size 8 in the storeSSE function in ImfOpti... In OpenEXR 2.2.0, an invalid write of size 8 in the storeSSE function in ImfOptimizedPixelReading.h could cause the application to crash or execute arbitrary code. Scope: local bookworm: resolved (fixed in 2.5.3-2) bullseye: resolved (fixed in 2.5.3-2) forky: resolved (fixed in 2.5.3-2) sid: resolved (fixed in 2.5.3-2) trixie: resolved (fixed in 2.5.3-2)

CVE-2017-9110 [MEDIUM] CVE-2017-9110: openexr - In OpenEXR 2.2.0, an invalid read of size 2 in the hufDecode function in ImfHuf.... In OpenEXR 2.2.0, an invalid read of size 2 in the hufDecode function in ImfHuf.cpp could cause the application to crash. Scope: local bookworm: resolved (fixed in 2.2.0-11.1) bullseye: resolved (fixed in 2.2.0-11.1) forky: resolved (fixed in 2.2.0-11.1) sid: resolved (fixed in 2.2.0-11.1) trixie: resolved (fixed in 2.2.0-11.1)

CVE-2017-9114 [MEDIUM] CVE-2017-9114: openexr - In OpenEXR 2.2.0, an invalid read of size 1 in the refill function in ImfFastHuf... In OpenEXR 2.2.0, an invalid read of size 1 in the refill function in ImfFastHuf.cpp could cause the application to crash. Scope: local bookworm: resolved (fixed in 2.2.0-11.1) bullseye: resolved (fixed in 2.2.0-11.1) forky: resolved (fixed in 2.2.0-11.1) sid: resolved (fixed in 2.2.0-11.1) trixie: resolved (fixed in 2.2.0-11.1)

CVE-2017-9116 [MEDIUM] CVE-2017-9116: openexr - In OpenEXR 2.2.0, an invalid read of size 1 in the uncompress function in ImfZip... In OpenEXR 2.2.0, an invalid read of size 1 in the uncompress function in ImfZip.cpp could cause the application to crash. Scope: local bookworm: resolved (fixed in 2.2.0-11.1) bullseye: resolved (fixed in 2.2.0-11.1) forky: resolved (fixed in 2.2.0-11.1) sid: resolved (fixed in 2.2.0-11.1) trixie: resolved (fixed in 2.2.0-11.1)

CVE-2017-9112 [MEDIUM] CVE-2017-9112: openexr - In OpenEXR 2.2.0, an invalid read of size 1 in the getBits function in ImfHuf.cp... In OpenEXR 2.2.0, an invalid read of size 1 in the getBits function in ImfHuf.cpp could cause the application to crash. Scope: local bookworm: resolved (fixed in 2.2.0-11.1) bullseye: resolved (fixed in 2.2.0-11.1) forky: resolved (fixed in 2.2.0-11.1) sid: resolved (fixed in 2.2.0-11.1) trixie: resolved (fixed in 2.2.0-11.1)

CVE-2017-9113 [HIGH] CVE-2017-9113: openexr - In OpenEXR 2.2.0, an invalid write of size 1 in the bufferedReadPixels function ... In OpenEXR 2.2.0, an invalid write of size 1 in the bufferedReadPixels function in ImfInputFile.cpp could cause the application to crash or execute arbitrary code. Scope: local bookworm: resolved (fixed in 2.5.3-2) bullseye: resolved (fixed in 2.5.3-2) forky: resolved (fixed in 2.5.3-2) sid: resolved (fixed in 2.5.3-2) trixie: resolved (fixed in 2.5.3-2)

CVE-2017-14988 [MEDIUM] CVE-2017-14988: openexr - Header::readfrom in IlmImf/ImfHeader.cpp in OpenEXR 2.2.0 allows remote attacker... Header::readfrom in IlmImf/ImfHeader.cpp in OpenEXR 2.2.0 allows remote attackers to cause a denial of service (excessive memory allocation) via a crafted file that is accessed with the ImfOpenInputFile function in IlmImf/ImfCRgbaFile.cpp. NOTE: The maintainer and multiple third parties believe that this vulnerability isn't valid Scope: local bookworm: open bullse

CVE-2009-1721 [MEDIUM] CVE-2009-1721: openexr - The decompression implementation in the Imf::hufUncompress function in OpenEXR 1... The decompression implementation in the Imf::hufUncompress function in OpenEXR 1.2.2 and 1.6.1 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors that trigger a free of an uninitialized pointer. Scope: local bookworm: resolved (fixed in 1.6.1-4.1) bullseye: resolved (fixed in 1.6.1-4.1)

CVE-2009-1722 [MEDIUM] CVE-2009-1722: openexr - Heap-based buffer overflow in the compression implementation in OpenEXR 1.2.2 al... Heap-based buffer overflow in the compression implementation in OpenEXR 1.2.2 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors. Scope: local bookworm: resolved (fixed in 1.6.1-1) bullseye: resolved (fixed in 1.6.1-1) forky: resolved (fixed in 1.6.1-1) sid: resolved (fixed i

CVE-2009-1720 [HIGH] CVE-2009-1720: openexr - Multiple integer overflows in OpenEXR 1.2.2 and 1.6.1 allow context-dependent at... Multiple integer overflows in OpenEXR 1.2.2 and 1.6.1 allow context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors that trigger heap-based buffer overflows, related to (1) the Imf::PreviewImage::PreviewImage function and (2) compressor constructors. NOTE: some of these details are obtaine