Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Tinyexr
(Tinyexr_project)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 13 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-06-23 | CVE-2022-34300 | In tinyexr 1.0.1, there is a heap-based buffer over-read in tinyexr::DecodePixelData. | Tinyexr | 8.8 | ||
| 2022-09-06 | CVE-2022-38529 | tinyexr commit 0647fb3 was discovered to contain a heap-buffer overflow via the component rleUncompress. | Tinyexr | 7.8 | ||
| 2021-07-26 | CVE-2020-18428 | tinyexr commit 0.9.5 was discovered to contain an array index error in the tinyexr::SaveEXR component, which can lead to a denial of service (DOS). | Tinyexr | 7.5 | ||
| 2021-07-26 | CVE-2020-18430 | tinyexr 0.9.5 was discovered to contain an array index error in the tinyexr::DecodeEXRImage component, which can lead to a denial of service (DOS). | Tinyexr | 7.5 | ||
| 2021-07-21 | CVE-2020-19490 | tinyexr 0.9.5 has a integer overflow over-write in tinyexr::DecodePixelData in tinyexr.h, related to OpenEXR code. | Tinyexr | 5.5 | ||
| 2019-01-01 | CVE-2018-20652 | An attempted excessive memory allocation was discovered in the function tinyexr::AllocateImage in tinyexr.h in tinyexr v0.9.5. Remote attackers could leverage this vulnerability to cause a denial-of-service via crafted input, which leads to an out-of-memory exception. | Tinyexr | 6.5 | ||
| 2018-06-22 | CVE-2018-12688 | tinyexr 0.9.5 has a segmentation fault in the wav2Decode function. | Tinyexr | 9.8 | ||
| 2018-06-22 | CVE-2018-12687 | tinyexr 0.9.5 has an assertion failure in DecodePixelData in tinyexr.h. | Tinyexr | 7.5 | ||
| 2018-06-16 | CVE-2018-12504 | tinyexr 0.9.5 has an assertion failure in ComputeChannelLayout in tinyexr.h. | Tinyexr | 7.5 | ||
| 2018-06-16 | CVE-2018-12503 | tinyexr 0.9.5 has a heap-based buffer over-read in LoadEXRImageFromMemory in tinyexr.h. | Tinyexr | 9.8 |