subject:"Bug#1014980\: tinyexr\: CVE\-2018\-12688 CVE\-2018\-12064 CVE\-2022\-34300"

Bug#1014980: tinyexr: CVE-2018-12688 CVE-2018-12064 CVE-2022-34300

2022-09-08 Thread Timo Röhling

Hi, On Fri, 15 Jul 2022 17:50:37 +0200 =?UTF-8?Q?Moritz_M=C3=BChlenhoff?= wrote: CVE-2018-12688[0]: | tinyexr 0.9.5 has a segmentation fault in the wav2Decode function. https://github.com/syoyo/tinyexr/issues/83 I cannot reproduce this. CVE-2018-12064[1]: | tinyexr 0.9.5 has a heap-based

Bug#1014980: tinyexr: CVE-2018-12688 CVE-2018-12064 CVE-2022-34300

2022-07-15 Thread Moritz Mühlenhoff

Source: tinyexr X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerabilities were published for tinyexr. CVE-2018-12688[0]: | tinyexr 0.9.5 has a segmentation fault in the wav2Decode function. https://github.com/syoyo/tinyexr/issues/83