CVE-2009-1722

Name of the Vulnerable Software and Affected Versions libopenexr6 versions (affected versions not specified) libopenexr2c2a versions (affected versions not specified) libopenexr-dev versions (affected versions not specified) OpenEXR version 1.2.2

Description The issue affects the compression implementation in OpenEXR, allowing context-dependent attackers to cause a denial of service or possibly execute arbitrary code via unspecified vectors. This can lead to a violation of confidentiality, integrity, and availability of protected information. The exploitation of these vulnerabilities can be carried out remotely.

Recommendations For libopenexr6, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For libopenexr2c2a, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For libopenexr-dev, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For OpenEXR version 1.2.2, consider updating to a version that fixes the heap-based buffer overflow in the compression implementation to prevent potential denial of service or arbitrary code execution.