VDB

CVE-2020-11759

CVE-2020-11759 PUBLISHED

An issue was discovered in OpenEXR before 2.4.1. Because of integer overflows in CompositeDeepScanLine::Data::handleDeepFrameBuffer and readSampleCountForLineBlock, an attacker can write to an out-of-bounds pointer.

EPSS 0.68% · 72.1th percentile

Risk Scores

EPSS Score
0.68%
72.1th percentile

Affected Products

VendorProductVersions
Ubuntu:18.04:LTSopenexr0, 2.2.0-11ubuntu1, 2.2.0-11.1ubuntu1
Ubuntu:16.04:LTSopenexr2.2.0-10ubuntu2.1, 2.2.0-10ubuntu2, 0
Ubuntu:20.04:LTSopenexr0, 2.3.0-6, 2.2.1-4.1ubuntu1

Timeline

  • Apr 14, 2020 CVE Published
  • Apr 14, 2021 EPSS Score
  • Jun 23, 2021 EPSS Score
  • Jul 11, 2021 CVE Updated
  • Aug 24, 2021 EPSS Score
  • Dec 27, 2021 EPSS Score
  • Jan 6, 2022 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Feb 28, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • May 1, 2022 EPSS Score
  • Sep 4, 2022 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›