FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
714e6c35-c75b-11ea-aa29-d74973d1f9f3	OpenEXR/ilmbase 2.5.2 -- patch release with various bug/security fixes Cary Phillips reports: openexr 2.5.2 [is a p]atch release with various bug/security and build/install fixes: Invalid input could cause a heap-use-after-free error in DeepScanLineInputFile::DeepScanLineInputFile() Invalid chunkCount attributes could cause heap buffer overflow in getChunkOffsetTableSize() Invalid tiled input file could cause invalid memory access TiledInputFile::TiledInputFile() Discovery 2020-05-18 Entry 2020-07-16 ilmbase lt 2.5.2 openexr lt 2.5.2 https://github.com/AcademySoftwareFoundation/openexr/releases/tag/v2.5.2

VuXML ID

Description

714e6c35-c75b-11ea-aa29-d74973d1f9f3

OpenEXR/ilmbase 2.5.2 -- patch release with various bug/security fixes

Cary Phillips reports:

openexr 2.5.2 [is a p]atch release with various bug/security and build/install fixes:

Invalid input could cause a heap-use-after-free error in DeepScanLineInputFile::DeepScanLineInputFile()

Invalid chunkCount attributes could cause heap buffer overflow in getChunkOffsetTableSize()

Invalid tiled input file could cause invalid memory access TiledInputFile::TiledInputFile()

Discovery 2020-05-18
Entry 2020-07-16
ilmbase

lt 2.5.2

openexr

lt 2.5.2

https://github.com/AcademySoftwareFoundation/openexr/releases/tag/v2.5.2