Lucene search
K

2370 matches found

vulnersOsv
vulnersOsv
added 2026/02/24 6:19 a.m.3 views

angorapy (>=0.9.1 <=0.10.8), apple-hdr-heic (=0.1.0) +66 more potentially affected by CVE-2026-26981 via openexr (>=3.4.12 <=3.4.4)

openexr PYPI version =3.4.12, =0.9.1, =0.5.0, =0.2.5, =0.1.0rc1, =0.0.1, =0.1.0, =0.2.1, =0.0.4, =0.1.7, =0.0.1, =0.1.1, =0.0.0, =0.0.4 and more Source cves: CVE-2026-26981 Source advisory: SNYK:PYTHON-OPENEXR-15338791...

6.5CVSS5.4AI score0.00523EPSS
Exploits1
Snyk
Snyk
added 2026/02/24 6:19 a.m.3 views

Signed to Unsigned Conversion Error

Overview Affected versions of this package are vulnerable to Signed to Unsigned Conversion Error via the istreamnonparallelread function in ImfContextInit.cpp when parsing a malformed EXR file through a memory-mapped IStream. An attacker can cause a heap buffer overflow by supplying a specially...

7.1CVSS5.9AI score0.00523EPSS
Exploits1References2
NVD
NVD
added 2026/02/24 3:16 a.m.22 views

CVE-2026-26981

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.0 through 3.3.6 and 3.4.0 through 3.4.4, a heap-buffer-overflow OOB read occurs in the istreamnonparallelread function in...

6.5CVSS0.00523EPSS
Exploits1References3
AlpineLinux
AlpineLinux
added 2026/02/24 2:26 a.m.6 views

CVE-2026-26981

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.0 through 3.3.6 and 3.4.0 through 3.4.4, a heap-buffer-overflow OOB read occurs in the istreamnonparallelread function in...

6.5CVSS5.4AI score0.00523EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/02/24 2:26 a.m.5 views

CVE-2026-26981

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.0 through 3.3.6 and 3.4.0 through 3.4.4, a heap-buffer-overflow OOB read occurs in the istreamnonparallelread function in...

6.5CVSS5.3AI score0.00523EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/24 2:26 a.m.4 views

CVE-2026-26981 OpenEXR has heap-buffer-overflow via signed integer underflow in ImfContextInit.cpp

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.0 through 3.3.6 and 3.4.0 through 3.4.4, a heap-buffer-overflow OOB read occurs in the istreamnonparallelread function in...

6.5CVSS5.3AI score0.00523EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/02/24 2:26 a.m.23 views

CVE-2026-26981 OpenEXR has heap-buffer-overflow via signed integer underflow in ImfContextInit.cpp

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.0 through 3.3.6 and 3.4.0 through 3.4.4, a heap-buffer-overflow OOB read occurs in the istreamnonparallelread function in...

6.5CVSS0.00523EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2026/02/24 2:26 a.m.7 views

CVE-2026-26981

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.0 through 3.3.6 and 3.4.0 through 3.4.4, a heap-buffer-overflow OOB read occurs in the istreamnonparallelread function in...

6.5CVSS5.2AI score0.00523EPSS
Exploits1
CVE
CVE
added 2026/02/24 2:26 a.m.16 views

CVE-2026-26981

OpenEXR CVE-2026-26981 affects 3.3.0–3.3.6 and 3.4.0–3.4.4; a heap-buffer-overflow (OOB read) occurs in istream_nonparallel_read in ImfContextInit.cpp when parsing a malformed EXR via a memory-mapped IStream. A signed integer subtraction becomes a negative value that is implicitly cast to size_t,...

6.5CVSS5.3AI score0.00523EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2026/02/24 2:26 a.m.5 views

CVE-2026-26981 OpenEXR has heap-buffer-overflow via signed integer underflow in ImfContextInit.cpp

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.0 through 3.3.6 and 3.4.0 through 3.4.4, a heap-buffer-overflow OOB read occurs in the istreamnonparallelread function in...

6.5CVSS5.5AI score0.00523EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/02/24 12:0 a.m.17 views

OpenEXR 安全漏洞

OpenEXR is an open standard for high dynamic range image file formats, open-sourced by the Academy Software Foundation. Versions 3.3.0 to 3.3.6 and 3.4.0 to 3.4.4 of OpenEXR contain security vulnerabilities. These vulnerabilities stem from integer underflow during the parsing of malformed EXR...

6.5CVSS5.9AI score0.00523EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/02/24 12:0 a.m.6 views

PT-2026-21650

Name of the Vulnerable Software and Affected Versions OpenEXR versions 3.3.0 through 3.3.6 OpenEXR versions 3.4.0 through 3.4.4 Description OpenEXR is an image storage format used in the motion picture industry. A heap-buffer-overflow out-of-bounds read can occur in the istream nonparallel read...

6.5CVSS5.9AI score0.00523EPSS
Exploits1References18
UbuntuCve
UbuntuCve
added 2026/02/24 12:0 a.m.1 views

CVE-2026-26981

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.0 through 3.3.6 and 3.4.0 through 3.4.4, a heap-buffer-overflow OOB read occurs in the istreamnonparallelread function in...

6.5CVSS5.8AI score0.00523EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/02/23 12:0 a.m.6 views

FreeBSD : openexr -- buffer overflow in istream_nonparallel_read on invalid input data (716d25a6-0fdc-11f1-bfdf-ff9355aecb00)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 716d25a6-0fdc-11f1-bfdf-ff9355aecb00 advisory. Cary Phillips reports: openexr v3.4.5 ... fixes an incorrect size check in istreamnonparallelread that...

5.8AI score
Exploits0References3
FreeBSD
FreeBSD
added 2026/02/16 12:0 a.m.9 views

openexr -- buffer overflow in istream_nonparallel_read on invalid input data

Cary Phillips reports: openexr v3.4.5 ... fixes an incorrect size check in istreamnonparallelread that could lead to a buffer overflow on invalid input data...

5.9AI score
Exploits0References2
Fedora
Fedora
added 2026/01/27 4:53 a.m.9 views

[SECURITY] Fedora 43 Update: mingw-openexr-3.3.6-1.fc43

MinGW Windows openexr library...

7.8CVSS7.1AI score0.00339EPSS
Exploits3
Fedora
Fedora
added 2026/01/26 1:8 a.m.6 views

[SECURITY] Fedora 42 Update: mingw-openexr-3.3.6-1.fc42

MinGW Windows openexr library...

7.8CVSS7.1AI score0.00339EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2026/01/26 12:0 a.m.6 views

Fedora 42 : mingw-openexr (2026-0e8fe3c8a3)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-0e8fe3c8a3 advisory. Update to openexr-3.3.6, fixes multiple security issues. Tenable has extracted the preceding description block directly from the Fedora security...

7.8CVSS6AI score0.00339EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2026/01/25 12:0 a.m.7 views

Fedora 43 : mingw-openexr (2026-1fbf91067c)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-1fbf91067c advisory. Update to openexr-3.3.6, fixes multiple security issues. Tenable has extracted the preceding description block directly from the Fedora security...

7.8CVSS6AI score0.00339EPSS
Exploits3References7
Amazon
Amazon
added 2026/01/23 12:0 a.m.9 views

Important: openexr

Issue Overview: Academy Software Foundation OpenEXR EXR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Academy Software Foundation OpenEXR. User interaction is required ...

7.8CVSS7.6AI score0.00158EPSS
Exploits0
Rows per page
Query Builder