CVE-2020-11760: 
NixOS vulnerability analysis and mitigation

CVE-2020-11760 is a security vulnerability discovered in OpenEXR before version 2.4.1. The vulnerability involves an out-of-bounds read during RLE uncompression in the rleUncompress function in ImfRle.cpp (OpenEXR Release, CVE Details).

The vulnerability is characterized by an out-of-bounds read condition that occurs during the RLE (Run-Length Encoding) uncompression process, specifically in the rleUncompress function located in ImfRle.cpp. The CVSS severity rating is Medium with a score of 5.5, with the attack vector being Local, requiring user interaction, and potentially impacting system availability (Ubuntu Security).

If exploited, this vulnerability could allow an attacker to cause unexpected system termination or corrupt kernel memory when processing maliciously crafted EXR image files. The vulnerability primarily affects system availability, with no direct impact on confidentiality or integrity (Ubuntu Security).

The vulnerability was fixed in OpenEXR version 2.4.1. Users and organizations are advised to upgrade to this version or later. Multiple operating system vendors have released security updates to address this vulnerability, including Ubuntu, Debian, and Apple in their respective products (Debian Security, Ubuntu Security).