Amazon Linux 2022 Security Advisory: ALAS-2022-061
Advisory Release Date: 2022-05-04 21:06 Pacific
Advisory Updated Date: 2022-05-06 16:19 Pacific
An integer overflow could occur when OpenEXR processes a crafted file on systems where size_t is less than 64 bits. This issue could cause an invalid bytesPerLine and maxBytesPerLine value, which leads to problems with application stability or other attack paths. (CVE-2021-3933)
In ImfChromaticities.cpp routine RGBtoXYZ(), there are some division operations such as `float Z = (1 - chroma.white.x - chroma.white.y) * Y / chroma.white.y;` and `chroma.green.y * (X + Z))) / d;` but the divisor is not checked for a 0 value. A specially crafted file could trigger a divide-by-zero condition which could affect the availability of programs linked with OpenEXR. (CVE-2021-3941)
Affected Packages:
openexr
Issue Correction:
Run dnf update --releasever=2022.0.20220504 openexr to update your system.
aarch64:
openexr-libs-debuginfo-3.1.4-1.amzn2022.aarch64
openexr-3.1.4-1.amzn2022.aarch64
openexr-debuginfo-3.1.4-1.amzn2022.aarch64
openexr-libs-3.1.4-1.amzn2022.aarch64
openexr-devel-3.1.4-1.amzn2022.aarch64
openexr-debugsource-3.1.4-1.amzn2022.aarch64
src:
openexr-3.1.4-1.amzn2022.src
x86_64:
openexr-libs-debuginfo-3.1.4-1.amzn2022.x86_64
openexr-3.1.4-1.amzn2022.x86_64
openexr-libs-3.1.4-1.amzn2022.x86_64
openexr-debuginfo-3.1.4-1.amzn2022.x86_64
openexr-devel-3.1.4-1.amzn2022.x86_64
openexr-debugsource-3.1.4-1.amzn2022.x86_64