CVE-2021-20303

MEDIUM6.1

A flaw found in function dataWindowForTile() of IlmImf/ImfTiledMisc

Published Mar 4, 2022

Modified 1 years ago

No fix available

Details

A flaw found in function dataWindowForTile() of IlmImf/ImfTiledMisc.cpp. An attacker who is able to submit a crafted file to be processed by OpenEXR could trigger an integer overflow, leading to an out-of-bounds write on the heap. The greatest impact of this flaw is to application availability, with some potential impact to data integrity as well.

References

WEBhttps://bugs.chromium.org/p/oss-fuzz/issues/detail?id=25505 WEBhttps://bugzilla.redhat.com/show_bug.cgi?id=1939151 WEBhttps://github.com/AcademySoftwareFoundation/openexr/pull/831 WEBhttps://lists.debian.org/debian-lts-announce/2022/12/msg00022.html ADVISORYhttps://www.cve.org/CVERecord?id=CVE-2021-20303

CVSS Analysis

CVSS v3.1

6.1

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

NonePR:N

User Interaction

RequiredUI:R

Scope

UnchangedS:U

Impact

Confidentiality

NoneC:N

Integrity

LowI:L

Availability

HighA:H

6.1/CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H

Weakness Type (CWE)

Other

CWE-190

Ecosystems

Timeline

PublishedMar 4, 2022

ModifiedAug 3, 2024