CVE-2020-11759

An issue was discovered in OpenEXR before 2.4.1. Because of integer overflows in CompositeDeepScanLine::Data::handleDeepFrameBuffer and readSampleCountForLineBlock, an attacker can write to an out-of-bounds pointer.

Date published : 2020-04-14

https://support.apple.com/kb/HT211288

https://support.apple.com/kb/HT211289