Lucene search
+L

CVE-2025-48072

🗓️ 31 Jul 2025 20:18:40Reported by Alpine Linux Development TeamType 
alpinelinux
 alpinelinux
🔗 security.alpinelinux.org👁 4 Views

OpenEXR 3.3.2 has a heap overflow on read for forged DWAA scanline chunks; fixed in 3.3.3.

Related
Packages
ReporterTitlePublishedViews
Family
Circl
CVE-2025-48072
31 Jul 202515:09
circl
CNNVD
OpenEXR 缓冲区错误漏洞
31 Jul 202500:00
cnnvd
CNVD
OpenEXR Buffer Overflow Vulnerability (CNVD-2025-24798)
11 Aug 202500:00
cnvd
CVE
CVE-2025-48072
31 Jul 202520:18
cve
Cvelist
CVE-2025-48072 OpenEXR's Inaccurate Pointer Arithmetic can Cause an Out of Bounds Heap
31 Jul 202520:18
cvelist
Debian CVE
CVE-2025-48072
31 Jul 202520:18
debiancve
EUVD
EUVD-2025-23315
3 Oct 202520:07
euvd
Github Security Blog
OpenEXR Out of Bounds Heap Read due to Bad Pointer Arithmetic in LossyDctDecoder_execute
31 Jul 202519:20
github
NVD
CVE-2025-48072
31 Jul 202521:15
nvd
OPENSUSE Linux
libIex-3_3-32-3.3.5-1.1 on GA media (moderate)
7 Aug 202500:00
opensuse
Rows per page
OSOS VersionArchitecturePackagePackage VersionFilename
Alpine Linux3.22anyopenexr3.3.11-r0openexr-3.3.11-r0.apk
Alpine Linuxanyanyopenexr3.4.2-r0openexr-3.4.2-r0.apk
Alpine Linux3.23anyopenexr3.4.2-r0openexr-3.4.2-r0.apk
Alpine Linux3.24anyopenexr3.4.2-r0openexr-3.4.2-r0.apk

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 09:29Current
7.6High risk
Vulners AI Score7.6
CVSS 3.19.1
CVSS 46.8
EPSS0.00496
SSVC
4