Tinyexr Project

tinyexr_project

13 CVEs • 1 product

Products (1)

Click to collapse

Toggle

CVEs (13)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-38529 1Tinyexr Project 1Tinyexr Nov 21, 2024 Sep 6, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 tinyexr commit 0647fb3 was discovered to contain a heap-buffer overflow via the component rleUncompress.
CVE-2022-34300 1Tinyexr Project 1Tinyexr Nov 21, 2024 Jun 23, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 In tinyexr 1.0.1, there is a heap-based buffer over-read in tinyexr::DecodePixelData.
CVE-2020-18430 1Tinyexr Project 1Tinyexr Nov 21, 2024 Jul 26, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 tinyexr 0.9.5 was discovered to contain an array index error in the tinyexr::DecodeEXRImage component, which can lead to a denial of service (DOS).
CVE-2020-18428 1Tinyexr Project 1Tinyexr Nov 21, 2024 Jul 26, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 tinyexr commit 0.9.5 was discovered to contain an array index error in the tinyexr::SaveEXR component, which can lead to a denial of service (DOS).
CVE-2020-19490 1Tinyexr Project 1Tinyexr Nov 21, 2024 Jul 21, 2021 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 tinyexr 0.9.5 has a integer overflow over-write in tinyexr::DecodePixelData in tinyexr.h, related to OpenEXR code.
CVE-2018-20652 1Tinyexr Project 1Tinyexr Nov 21, 2024 Jan 1, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 An attempted excessive memory allocation was discovered in the function tinyexr::AllocateImage in tinyexr.h in tinyexr v0.9.5. Remote attackers could leverage this vulnerability to cause a denial-of-service via crafted i...Show more An attempted excessive memory allocation was discovered in the function tinyexr::AllocateImage in tinyexr.h in tinyexr v0.9.5. Remote attackers could leverage this vulnerability to cause a denial-of-service via crafted input, which leads to an out-of-memory exception.Show less
CVE-2018-12688 1Tinyexr Project 1Tinyexr Nov 21, 2024 Jun 22, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 tinyexr 0.9.5 has a segmentation fault in the wav2Decode function.
CVE-2018-12687 1Tinyexr Project 1Tinyexr Nov 21, 2024 Jun 22, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 tinyexr 0.9.5 has an assertion failure in DecodePixelData in tinyexr.h.
CVE-2018-12504 1Tinyexr Project 1Tinyexr Nov 21, 2024 Jun 16, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 tinyexr 0.9.5 has an assertion failure in ComputeChannelLayout in tinyexr.h.
CVE-2018-12503 1Tinyexr Project 1Tinyexr Nov 21, 2024 Jun 16, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 tinyexr 0.9.5 has a heap-based buffer over-read in LoadEXRImageFromMemory in tinyexr.h.
CVE-2018-12093 1Tinyexr Project 1Tinyexr Nov 21, 2024 Jun 11, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 tinyexr 0.9.5 has a memory leak in ParseEXRHeaderFromMemory in tinyexr.h.
CVE-2018-12092 1Tinyexr Project 1Tinyexr Nov 21, 2024 Jun 11, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 tinyexr 0.9.5 has a heap-based buffer over-read in tinyexr::DecodePixelData in tinyexr.h, related to OpenEXR code.
CVE-2018-12064 1Tinyexr Project 1Tinyexr Nov 21, 2024 Jun 8, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 tinyexr 0.9.5 has a heap-based buffer over-read via tinyexr::ReadChannelInfo in tinyexr.h.