CVE-2021-3474

Integer Overflow or Wraparound in conan/openexr

Identifier

CVE-2021-3474

Package Slug

conan/openexr

Vulnerability

Integer Overflow or Wraparound

Description

A crafted input file that is processed by OpenEXR could cause a shift overflow in the FastHufDecoder, potentially leading to problems with application availability.

Affected Versions

All versions before 2.5.4

Solution

Upgrade to version 2.5.4 or above.

Last Modified

2021-04-22

source