Lucene search
RedhatCVELIST:CVE-2021-3478HistoryMar 31, 2021 - 12:00 a.m.
CVE-2021-3478
2021-03-3100:00:00
CWE-400
redhat
www.cve.org
5
openexr
scanline input file
system memory consumption
system availability
There’s a flaw in OpenEXR’s scanline input file functionality in versions before 3.0.0-beta. An attacker able to submit a crafted file to be processed by OpenEXR could consume excessive system memory. The greatest impact of this flaw is to system availability.
CNA Affected
[
{
"vendor": "n/a",
"product": "OpenEXR",
"versions": [
{
"version": "OpenEXR 3.0.0-beta",
"status": "affected"
}
]
}
]Related
prion
prion
Input validation
2021-03-31 14:15:00
redhatcve
redhatcve
CVE-2021-3478
2021-03-30 18:57:51
ubuntucve
ubuntucve
CVE-2021-3478
2021-03-31 00:00:00
debiancve
debiancve
CVE-2021-3478
2021-03-31 14:15:21
nvd
nvd
CVE-2021-3478
2021-03-31 14:15:21
osv
osv
CVE-2021-3478
2021-03-31 14:15:21
openexr vulnerabilities
2021-04-01 17:33:50
openexr - security update
2021-07-03 00:00:00
alpinelinux
alpinelinux
CVE-2021-3478
2021-03-31 14:15:21
veracode
veracode
Denial Of Service (DoS)
2021-04-05 07:36:13
cve
cve
CVE-2021-3478
2021-03-31 14:15:21
rosalinux
rosalinux
Advisory ROSA-SA-2023-2248
2023-10-17 12:58:34
nessus
nessus
ubuntu
ubuntu
OpenEXR vulnerabilities
2021-04-01 00:00:00
cloudfoundry
cloudfoundry
USN-4900-1: OpenEXR vulnerabilities | Cloud Foundry
2021-04-29 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4900-1)
2021-04-02 00:00:00
Debian: Security Advisory (DLA-2701-1)
2021-07-04 00:00:00
Mageia: Security Advisory (MGASA-2021-0326)
2022-01-28 00:00:00
freebsd
freebsd
openexr, ilmbase -- security fixes related to reading corrupted input files
2021-02-12 00:00:00
debian
debian
[SECURITY] [DLA 2701-1] openexr security update
2021-07-03 18:16:01
[SECURITY] [DLA 3236-1] openexr security update
2022-12-11 23:52:53
mageia
mageia
Updated openexr packages fix security vulnerabilities
2021-07-10 15:56:54
gentoo
gentoo
OpenEXR: Multiple vulnerabilities
2021-07-11 00:00:00