github AcademySoftwareFoundation/openexr v2.5.4
on GitHub

latest releases: v3.4.4, v3.4.4-rc2, v3.4.4-rc...
5 years ago

Patch release with various bug/sanitizer/security fixes, primarily related to reading corrupted input files.

Specific OSS-fuzz issues include:

  • OSS-fuzz #24854 Segv on unknown address in Imf_2_5::hufUncompress
  • OSS-fuzz #24831 Undefined-shift in Imf_2_5::FastHufDecoder::FastHufDecoder
  • OSS-fuzz #24969 Invalid-enum-value in Imf_2_5::TypedAttribute<Imf_2_5::Envmap>::writeVal
    ueTo
  • OSS-fuzz #25297 Integer-overflow in Imf_2_5::calculateNumTiles
  • OSS-fuzz #24787 Undefined-shift in Imf_2_5::unpack14
  • OSS-fuzz #25326 Out-of-memory in openexr_scanlines_fuzzer
  • OSS-fuzz #25399 Heap-buffer-overflow in Imf_2_5::FastHufDecoder::FastHufDecoder
  • OSS-fuzz #25415 Abrt in __cxxabiv1::failed_throw
  • OSS-fuzz #25370 Out-of-memory in openexr_exrenvmap_fuzzer
  • OSS-fuzz #25501 Out-of-memory in openexr_scanlines_fuzzer
  • OSS-fuzz #25505 Heap-buffer-overflow in Imf_2_5::copyIntoFrameBuffer
  • OSS-fuzz #25562 Integer-overflow in Imf_2_5::hufUncompress
  • OSS-fuzz #25740 Null-dereference READ in Imf_2_5::Header::operator
  • OSS-fuzz #25743 Null-dereference in Imf_2_5::MultiPartInputFile::header
  • OSS-fuzz #25913 Out-of-memory in openexr_exrenvmap_fuzzer
  • OSS-fuzz #26229 Undefined-shift in Imf_2_5::hufDecode
  • OSS-fuzz #26658 Out-of-memory in openexr_scanlines_fuzzer
  • OSS-fuzz #26956 Heap-buffer-overflow in Imf_2_5::DeepTiledInputFile::readPixelSampleCoun
    ts
  • OSS-fuzz #27409 Out-of-memory in openexr_exrcheck_fuzzer
  • OSS-fuzz #25892 Divide-by-zero in Imf_2_5::calculateNumTiles
  • OSS-fuzz #25894 Floating-point-exception in Imf_2_5::precalculateTileInfo

See CHANGES.md for more details.

Check out latest releases or
releases around AcademySoftwareFoundation/openexr v2.5.4

Don't miss a new openexr release

NewReleases is sending notifications on new releases.

Get notifications