ECHO-0b54-eced-403b

See a problem?

Import Source

https://advisory.echohq.com/osv/ECHO-0b54-eced-403b.json

JSON Data

https://api.osv.dev/v1/vulns/ECHO-0b54-eced-403b

Upstream

CVE-2017-14988

Withdrawn

2026-06-01T13:30:03.694Z

Published

2026-06-01T07:39:17.593Z

Modified

2026-06-01T14:15:06.397888040Z

Summary

Excessive memory allocation in Header::readfrom via ImageMagick. Disputed by maintainer and multiple third parties as not a valid vulnerability - the issue is in the use of openexr via ImageMagick, with no real security impact in openexr itself.

Details

References

https://advisory.echohq.com/cve/CVE-2017-14988

Affected packages

Echo / openexr

Package

Name: openexr
Purl: pkg:deb/echo/openexr

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.1.13-2

Database specific

source

"https://advisory.echohq.com/osv/ECHO-0b54-eced-403b.json"