CVE-2026-27622

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In CompositeDeepScanLine::readPixels, per-pixel totals are accumulated in vector totalsizes for attacker-controlled large counts across many parts,...

UBUNTU-CVE-2026-27622

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In CompositeDeepScanLine::readPixels, per-pixel totals are accumulated in vector totalsizes for attacker-controlled large counts across many parts,...

OpenEXR 缓冲区错误漏洞

OpenEXR is an open standard for high dynamic range image file formats, open-sourced by the Academy Software Foundation. Versions of OpenEXR prior to 3.2.6, 3.3.8, and 3.4.6 contain a buffer error vulnerability. This vulnerability arises from the rounding of the total per-pixel value in vector tot...

PT-2025-54149

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to preemption handling within the bpf perf event output function. The nesting protection in this function relies on disabled preemption, which i...

PT-2025-54002

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to the bpf event output function. The issue arises from nesting protection being used without preemption being disabled. This can lead to a kern...

kernel: bpf: Disable preemption in bpf_perf_event_output

A flaw was found in the Linux kernel's BPF subsystem. The bpfperfeventoutput function relies on disabled preemption for nesting protection, but when called from uprobes context via bpfprogrunarraysleepable, preemption remains enabled. This allows task preemption during protected sections, leading...