Download
| Alert*
|
oval:org.secpod.oval:def:67889
The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a malicious web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:67890 The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a malicious web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:65745 The host is installed with Apple Mac OS X 10.13.6, 10.14.6 or 10.15.5 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle checks issue in openEXR. Successful exploitation allows an attacker to cause buffer overflow issue in openEXR. oval:org.secpod.oval:def:66749 Multiple security issues were found in the OpenEXR image library, which could result in denial of service and potentially the execution of arbitrary code when processing malformed EXR image files. oval:org.secpod.oval:def:62968 openexr: tools for the OpenEXR image format Several security issues were fixed in OpenEXR. oval:org.secpod.oval:def:67898 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a checks issue. Successful exploitation could allow an attacker to cause unspecified impact. oval:org.secpod.oval:def:64590 The host is missing a security update according to Apple advisory, APPLE-SA-2020-07-15-2. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allow remote attackers to execute arbitrary code or ... oval:org.secpod.oval:def:89050443 This update for openexr provides the following fix: Security issues fixed: - CVE-2020-11765: Fixed an off-by-one error in use of the ImfXdr.h read function by DwaCompressor:Classifier:Classifier . - CVE-2020-11764: Fixed an out-of-bounds write in copyIntoFrameBuffer in ImfMisc.cpp . - CVE-2020-11763 ... oval:org.secpod.oval:def:118216 MinGW Windows ilmbase library. oval:org.secpod.oval:def:118213 MinGW Windows OpenEXR library. oval:org.secpod.oval:def:705446 openexr: tools for the OpenEXR image format Several security issues were fixed in OpenEXR. oval:org.secpod.oval:def:1504176 [1.7.1-8] - fix CVE-2020-11764 - fix CVE-2020-11763 - fix CVE-2020-11761 oval:org.secpod.oval:def:1700441 An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read during Huffman uncompression, as demonstrated by FastHufDecoder::refill in ImfFastHuf.cpp. An issue was discovered in OpenEXR before 2.4.1. There is an std::vector out-of-bounds read and write, as demonstrated by ImfTile ... oval:org.secpod.oval:def:89000170 This update for openexr provides the following fix: Security issues fixed: - CVE-2020-11764: Fixed an out-of-bounds write in copyIntoFrameBuffer in ImfMisc.cpp . - CVE-2020-11763: Fixed an out-of-bounds read and write, as demonstrated by ImfTileOffsets.cpp . - CVE-2020-11758: Fixed an out-of-bounds ... oval:org.secpod.oval:def:504336 OpenEXR is a high dynamic-range image file format developed by Industrial Light Magic for use in computer imaging applications. This package contains libraries and sample applications for handling the format. Security Fix: * OpenEXR: out-of-bounds read during Huffman uncompression * OpenEXR: std:: ... oval:org.secpod.oval:def:205630 OpenEXR is a high dynamic-range image file format developed by Industrial Light. Magic for use in computer imaging applications. This package contains libraries and sample applications for handling the format. Security Fix: * OpenEXR: out-of-bounds read during Huffman uncompression * OpenEXR: std: ... oval:org.secpod.oval:def:605001 Multiple security issues were found in the OpenEXR image library, which could result in denial of service and potentially the execution of arbitrary code when processing malformed EXR image files. |
