openexr: Multiple vulnerabilities (CVE-2020-15304, CVE-2020-15305, CVE-2020-15306)
CVE-2020-15304
An issue was discovered in OpenEXR before 2.5.2. An invalid tiled input file could cause invalid memory access in TiledInputFile::TiledInputFile() in IlmImf/ImfTiledInputFile.cpp, as demonstrated by a NULL pointer dereference.
References:
- https://github.com/AcademySoftwareFoundation/openexr/blob/master/SECURITY.md
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15304
CVE-2020-15305
An issue was discovered in OpenEXR before 2.5.2. Invalid input could cause a use-after-free in DeepScanLineInputFile::DeepScanLineInputFile() in IlmImf/ImfDeepScanLineInputFile.cpp.
References:
- https://github.com/AcademySoftwareFoundation/openexr/blob/master/SECURITY.md
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15305
CVE-2020-15306
An issue was discovered in OpenEXR before v2.5.2. Invalid chunkCount attributes could cause a heap buffer overflow in getChunkOffsetTableSize() in IlmImf/ImfMisc.cpp.
References:
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15306
- https://github.com/AcademySoftwareFoundation/openexr/blob/master/SECURITY.md
Affected branches:
-
master (376cd0a4) -
3.12-stable