漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
OpenEXR: integer overflow to OOB write in uncompress_b44_impl()
Vulnerability Description
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From version 3.4.0 to before version 3.4.8, a crafted B44 or B44A EXR file can cause an out-of-bounds write in any application that decodes it via exr_decoding_run(). Consequences range from immediate crash (most likely) to corruption of adjacent heap allocations (layout-dependent). This issue has been patched in version 3.4.8.
CVSS Information
N/A
Vulnerability Type
整数溢出或超界折返
Vulnerability Title
OpenEXR 缓冲区错误漏洞
Vulnerability Description
OpenEXR是Academy Software Foundation开源的一种高动态范围图像(HDR)文件格式的开放标准。 OpenEXR 3.4.0至3.4.8之前版本存在缓冲区错误漏洞,该漏洞源于特制的B44或B44A EXR文件可能导致通过exr_decoding_run()解码它的任何应用程序发生越界写入,后果从立即崩溃到相邻堆分配损坏。
CVSS Information
N/A
Vulnerability Type
N/A