CVE-2017-9113

Priority
Description
In OpenEXR 2.2.0, an invalid write of size 1 in the bufferedReadPixels
function in ImfInputFile.cpp could cause the application to crash or
execute arbitrary code.
Assigned-to
mdeslaur
Notes
mdeslaursee suse bug for reproducer with exrmakepreview
first patch in upstream bug doesn't cover this CVE

The patch for this issue was dropped during the focal
development cycle by mistake.
More Information

Updated: 2020-07-28 20:02:58 UTC (commit d26b6ca9f5b3adb89bb036ce73ae7dab894935ec)