Vulnetix
Try Vulnetix Request Demo
GCVE-VVD-MAGEIA-2018-32
Advisory Published
Vulnetix · Advisory published February 17, 2018
In OpenEXR 2.2.0, an invalid read of size 2 in the hufDecode function in ImfHuf.cpp could cause the application to crash (CVE-2017-9110). In OpenEXR 2.2.0, an invalid read of size 1 in the getBits function in ImfHuf.cpp could cause the application to crash (CVE-2017-9112). In OpenEXR 2.2.0, an invalid read of size 1 in the uncompress function in ImfZip.cpp could cause the application to crash (CVE-2017-9116).
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiapure-ftpd0 (affected), 1.0.47-1.4.mga6 (unaffected)
MageiaOpenEXR0 (affected), 2.2.0-4.1.mga5 (unaffected), 0 (affected), 2.2.0-4.1.mga5 (unaffected)

Aliases

CVE-2017-9116CVE-2017-9112CVE-2017-9110

Transitive aliases

GHSA-5h55-c648-5387BDU:2021-03765BDU:2021-03497GHSA-vprv-hwp3-673fBDU:2021-03498GHSA-fqq4-jr8p-g7prVVD-GENTOO-2017-620324GHSA-8m57-j273-2qg9CVE-2017-9111CVE-2017-9114GHSA-7qw3-3fpm-j7xjCNVD-2017-07511BDU:2021-03496BDU:2018-00020CVE-2017-9113CVE-2017-9115GHSA-qxh9-r8xw-7v99GSD-2017-9114GHSA-wgj2-mq2h-cpcfBDU:2021-03759BDU:2021-03495

References

Updated OpenEXR packages fix security vulnerability
advisory
Updated OpenEXR packages fix security vulnerability
issue
Updated OpenEXR packages fix security vulnerability
issue
Updated pure-ftpd packages fixes a few bugs
advisory
Updated pure-ftpd packages fixes a few bugs
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON