CVE-2017-9115 - OpenCVE

In OpenEXR 2.2.0, an invalid write of size 2 in the = operator function in half.h could cause the application to crash or execute arbitrary code.

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:M/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Openexr	Openexr

Configuration 1 [-]

cpe:2.3:a:openexr:openexr:2.2.0:*:*:*:*:*:*:*

References

Link	Resource
http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00060.html
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00000.html
http://www.openwall.com/lists/oss-security/2017/05/12/5	Third Party Advisory
https://github.com/openexr/openexr/issues/232
https://github.com/openexr/openexr/pull/233
https://github.com/openexr/openexr/releases/tag/v2.2.1
https://lists.debian.org/debian-lts-announce/2020/08/msg00056.html
https://usn.ubuntu.com/4148-1/
https://usn.ubuntu.com/4339-1/
https://www.debian.org/security/2020/dsa-4755

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2017-05-21T18:00:00

Updated: 2020-08-30T21:06:19

Reserved: 2017-05-21T00:00:00

Link: CVE-2017-9115

JSON object: View

NVD Information

Status : Modified

Published: 2017-05-21T18:29:00.457

Modified: 2020-08-30T22:15:11.963

Link: CVE-2017-9115

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-noinfo

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2017-05-21T00:00:00", "descriptions": [{"lang": "en", "value": "In OpenEXR 2.2.0, an invalid write of size 2 in the = operator function in half.h could cause the application to crash or execute arbitrary code."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2020-08-30T21:06:19", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://www.openwall.com/lists/oss-security/2017/05/12/5"}, {"name": "openSUSE-SU-2019:1816", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00060.html"}, {"name": "openSUSE-SU-2019:1826", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00000.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/openexr/openexr/releases/tag/v2.2.1"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/openexr/openexr/issues/232"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/openexr/openexr/pull/233"}, {"name": "USN-4148-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "https://usn.ubuntu.com/4148-1/"}, {"name": "USN-4339-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "https://usn.ubuntu.com/4339-1/"}, {"name": "DSA-4755", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "https://www.debian.org/security/2020/dsa-4755"}, {"name": "[debian-lts-announce] 20200830 [SECURITY] [DLA 2358-1] openexr security update", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://lists.debian.org/debian-lts-announce/2020/08/msg00056.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2017-9115", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "In OpenEXR 2.2.0, an invalid write of size 2 in the = operator function in half.h could cause the application to crash or execute arbitrary code."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.openwall.com/lists/oss-security/2017/05/12/5", "refsource": "MISC", "url": "http://www.openwall.com/lists/oss-security/2017/05/12/5"}, {"name": "openSUSE-SU-2019:1816", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00060.html"}, {"name": "openSUSE-SU-2019:1826", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00000.html"}, {"name": "https://github.com/openexr/openexr/releases/tag/v2.2.1", "refsource": "CONFIRM", "url": "https://github.com/openexr/openexr/releases/tag/v2.2.1"}, {"name": "https://github.com/openexr/openexr/issues/232", "refsource": "CONFIRM", "url": "https://github.com/openexr/openexr/issues/232"}, {"name": "https://github.com/openexr/openexr/pull/233", "refsource": "CONFIRM", "url": "https://github.com/openexr/openexr/pull/233"}, {"name": "USN-4148-1", "refsource": "UBUNTU", "url": "https://usn.ubuntu.com/4148-1/"}, {"name": "USN-4339-1", "refsource": "UBUNTU", "url": "https://usn.ubuntu.com/4339-1/"}, {"name": "DSA-4755", "refsource": "DEBIAN", "url": "https://www.debian.org/security/2020/dsa-4755"}, {"name": "[debian-lts-announce] 20200830 [SECURITY] [DLA 2358-1] openexr security update", "refsource": "MLIST", "url": "https://lists.debian.org/debian-lts-announce/2020/08/msg00056.html"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2017-9115", "datePublished": "2017-05-21T18:00:00", "dateReserved": "2017-05-21T00:00:00", "dateUpdated": "2020-08-30T21:06:19", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:openexr:openexr:2.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "DCA193BE-2354-4F9E-8415-F743BAAFEA2C", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "In OpenEXR 2.2.0, an invalid write of size 2 in the = operator function in half.h could cause the application to crash or execute arbitrary code."}, {"lang": "es", "value": "En la versi\u00f3n 2.2.0 de OpenEXR, una lectura inv\u00e1lida de tama\u00f1o 2 en la funci\u00f3n = operator podr\u00eda provocar el cierre inesperado de la aplicaci\u00f3n o la ejecuci\u00f3n de c\u00f3digo arbitrario."}], "id": "CVE-2017-9115", "lastModified": "2020-08-30T22:15:11.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-05-21T18:29:00.457", "references": [{"source": "cve@mitre.org", "url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00060.html"}, {"source": "cve@mitre.org", "url": "http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00000.html"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2017/05/12/5"}, {"source": "cve@mitre.org", "url": "https://github.com/openexr/openexr/issues/232"}, {"source": "cve@mitre.org", "url": "https://github.com/openexr/openexr/pull/233"}, {"source": "cve@mitre.org", "url": "https://github.com/openexr/openexr/releases/tag/v2.2.1"}, {"source": "cve@mitre.org", "url": "https://lists.debian.org/debian-lts-announce/2020/08/msg00056.html"}, {"source": "cve@mitre.org", "url": "https://usn.ubuntu.com/4148-1/"}, {"source": "cve@mitre.org", "url": "https://usn.ubuntu.com/4339-1/"}, {"source": "cve@mitre.org", "url": "https://www.debian.org/security/2020/dsa-4755"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}