OpenEXR -- heap buffer overflow, and out-of-memory bugs
Cary Phillips reports:
OpenEXR (IlmBase) v2.4.0 fixes the following security vulnerabilities:
- CVE-2018-18444 Issue #351 Out of Memory
- CVE-2018-18443 Issue #350 heap-buffer-overflow
The relevant patches have been backported to the FreeBSD ports.
Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright