2370 matches found
CVE-2025-64183 OpenEXR has use after free in PyObject_StealAttrString
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.2.0 through 3.2.4, 3.3.0 through 3.3.5, and 3.4.0 through 3.4.2, there is a use-after-free in PyObjectStealAttrString of pyOpenEXRold.cpp...
CVE-2025-64183
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.2.0 through 3.2.4, 3.3.0 through 3.3.5, and 3.4.0 through 3.4.2, there is a use-after-free in PyObjectStealAttrString of pyOpenEXRold.cpp...
CVE-2025-64183 OpenEXR has use after free in PyObject_StealAttrString
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.2.0 through 3.2.4, 3.3.0 through 3.3.5, and 3.4.0 through 3.4.2, there is a use-after-free in PyObjectStealAttrString of pyOpenEXRold.cpp...
CVE-2025-64182 OpenEXR has buffer overflow in PyOpenEXR_old's channels() and channel()
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.2.0 through 3.2.4, 3.3.0 through 3.3.5, and 3.4.0 through 3.4.2, a memory safety bug in the legacy OpenEXR Python adapter the deprecated...
CVE-2025-64182 OpenEXR has buffer overflow in PyOpenEXR_old's channels() and channel()
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.2.0 through 3.2.4, 3.3.0 through 3.3.5, and 3.4.0 through 3.4.2, a memory safety bug in the legacy OpenEXR Python adapter the deprecated...
CVE-2025-64182 OpenEXR has buffer overflow in PyOpenEXR_old's channels() and channel()
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.2.0 through 3.2.4, 3.3.0 through 3.3.5, and 3.4.0 through 3.4.2, a memory safety bug in the legacy OpenEXR Python adapter the deprecated...
CVE-2025-64182
CVE-2025-64182 affects the OpenEXR Python legacy adapter (OpenEXR.InputFile) in multiple OpenEXR releases. The root cause is a memory-safety bug from integer overflow and unchecked allocation in InputFile.channel() and InputFile.channels(), leading to heap overflow (32‑bit) or NULL dereference (6...
CVE-2025-64182
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.2.0 through 3.2.4, 3.3.0 through 3.3.5, and 3.4.0 through 3.4.2, a memory safety bug in the legacy OpenEXR Python adapter the deprecated...
CVE-2025-64181
CVE-2025-64181 affects OpenEXR OpenEXRCore in 3.3.0–3.3.5 and 3.4.0–3.4.2 where fuzzing revealed a use of uninitialized memory in generic_unpack, leading to undefined behavior or potential crash. Affected releases are fixed in 3.3.6 and 3.4.3. Fedora/OpenSUSE advisories corroborate the backport/f...
CVE-2025-64181
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.0 through 3.3.5 and 3.4.0 through 3.4.2, while fuzzing openexrexrcheckfuzzer, Valgrind reports a conditional branch depending on...
CVE-2025-64181 OpenEXR Makes Use of Uninitialized Memory
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.0 through 3.3.5 and 3.4.0 through 3.4.2, while fuzzing openexrexrcheckfuzzer, Valgrind reports a conditional branch depending on...
CVE-2025-64181 OpenEXR Makes Use of Uninitialized Memory
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.0 through 3.3.5 and 3.4.0 through 3.4.2, while fuzzing openexrexrcheckfuzzer, Valgrind reports a conditional branch depending on...
CVE-2025-64181
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.0 through 3.3.5 and 3.4.0 through 3.4.2, while fuzzing openexrexrcheckfuzzer, Valgrind reports a conditional branch depending on...
CVE-2025-64181 OpenEXR Makes Use of Uninitialized Memory
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.0 through 3.3.5 and 3.4.0 through 3.4.2, while fuzzing openexrexrcheckfuzzer, Valgrind reports a conditional branch depending on...
OpenEXR 资源管理错误漏洞
OpenEXR is an open standard for a high dynamic range image HDR file format open sourced by the Academy Software Foundation. A resource management error vulnerability exists in OpenEXR versions 3.2.0 through 3.2.4, 3.3.0 through 3.3.5, and 3.4.0 through 3.4.2, which stems from a post-release reuse...
OpenEXR 安全漏洞
OpenEXR is an open standard for a high dynamic range image HDR file format open sourced by the Academy Software Foundation. A security vulnerability exists in OpenEXR versions 3.2.0 through 3.2.4, 3.3.0 through 3.3.5, and 3.4.0 through 3.4.2, which stems from a memory safety issue in the OpenEXR...
PT-2025-46203
Name of the Vulnerable Software and Affected Versions OpenEXR versions 3.2.0 through 3.2.4 OpenEXR versions 3.3.0 through 3.3.5 OpenEXR versions 3.4.0 through 3.4.2 Description OpenEXR is an image storage format used in the motion picture industry. A use-after-free condition exists in the PyObjec...
OpenEXR 安全漏洞
OpenEXR is an open standard for a high dynamic range image HDR file format open sourced by Academy Software Foundation. A security vulnerability exists in OpenEXR versions 3.3.0 through 3.3.5 and 3.4.0 through 3.4.2, which stems from the use of uninitialized memory and could lead to undefined...
FreeBSD : OpenEXR < 3.4.3 -- multiple vulnerabilities (c71a3914-ba96-11f0-aada-f59a8ea34d12)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the c71a3914-ba96-11f0-aada-f59a8ea34d12 advisory. Cary Phillips reports: Patch release that addresses several bugs, primarily involving properly rejectin...
PT-2025-46201
Name of the Vulnerable Software and Affected Versions OpenEXR versions 3.3.0 through 3.3.5 OpenEXR versions 3.4.0 through 3.4.2 Description OpenEXR is an image storage format used in the motion picture industry. A flaw exists due to a conditional branch based on uninitialized data within the...