CVE-2009-1722

Published: Jul 31, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

Heap-based buffer overflow in the compression implementation in OpenEXR 1.2.2 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://support.apple.com/kb/HT3757

x_refsource_CONFIRM

MDVSA-2009:191

vendor-advisory

x_refsource_MANDRIVA

http://security.debian.org/pool/updates/main/o/openexr/openexr_1.2.2-4.3+etch2.diff.gz

x_refsource_CONFIRM

36753

third-party-advisory

x_refsource_SECUNIA

ADV-2009-2035

vdb-entry

x_refsource_VUPEN

36096

third-party-advisory

x_refsource_SECUNIA

DSA-1842

vendor-advisory

x_refsource_DEBIAN

36032

third-party-advisory

x_refsource_SECUNIA

APPLE-SA-2009-08-05-1

vendor-advisory

x_refsource_APPLE

35838

vdb-entry

x_refsource_BID

1022674

vdb-entry

x_refsource_SECTRACK

USN-831-1

vendor-advisory

x_refsource_UBUNTU

ADV-2009-2172

vdb-entry

x_refsource_VUPEN

TA09-218A

third-party-advisory

x_refsource_CERT

https://github.com/openexr/openexr/blob/master/CHANGES.md#version-170-july-23-2010

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2009-1722

Description

Affected Products

References