OpenEXR has heap-buffer-overflow via signed integer underflow in ImfContextInit.cpp

Summary A heap-buffer-overflow OOB read occurs in the istreamnonparallelread function in ImfContextInit.cpp when parsing a malformed EXR file through a memory-mapped IStream. A signed integer subtraction produces a negative value that is implicitly converted to sizet, resulting in a massive lengt...

EUVD-2016-10867

IObit Malware Fighter 4.3.1 contains an unquoted service path vulnerability in the IMFservice and LiveUpdateSvc services that allows local attackers to escalate privileges. Attackers can insert a malicious executable file in the unquoted service path and trigger privilege escalation when the...

CVE-2016-20059 IObit Malware Fighter 4.3.1 Unquoted Service Path Privilege Escalation

IObit Malware Fighter 4.3.1 contains an unquoted service path vulnerability in the IMFservice and LiveUpdateSvc services that allows local attackers to escalate privileges. Attackers can insert a malicious executable file in the unquoted service path and trigger privilege escalation when the...

CVE-2026-26981 OpenEXR has heap-buffer-overflow via signed integer underflow in ImfContextInit.cpp

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.0 through 3.3.6 and 3.4.0 through 3.4.4, a heap-buffer-overflow OOB read occurs in the istreamnonparallelread function in...

OSV-2025-600 Heap-buffer-overflow in generic_unpack

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=436037111 Crash type: Heap-buffer-overflow READ 2 Crash state: genericunpack Imf34::ScanLineInputFile::Data::readPixels Imf34::InputFile::readPixels...

SUSE CVE-2024-28562

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 r1909 allows a local attacker to execute arbitrary code via the Imf22::copyIntoFrameBuffer component when reading images in EXR format...

DEBIAN-CVE-2024-28569

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 r1909 allows a local attacker to execute arbitrary code via the Imf22::Xdr::read function when reading images in EXR format...

PT-2023-2363 · Iobit · Iobit Malware Fighter

Name of the Vulnerable Software and Affected Versions: IObit Malware Fighter version 9.4.0.776 Description: A problematic vulnerability has been found in the ImfRegistryFilter.sys component of IObit Malware Fighter, related to incorrect clearing or release of resources. This affects the function...

PT-2023-2364 · Iobit · Iobit Malware Fighter

Name of the Vulnerable Software and Affected Versions: IObit Malware Fighter version 9.4.0.776 Description: A vulnerability in the ImfRegistryFilter.sys component of IObit Malware Fighter is related to incorrect clearing or release of resources. The manipulation of this issue can lead to denial o...

SUSE CVE-2009-1721

The decompression implementation in the Imf::hufUncompress function in OpenEXR 1.2.2 and 1.6.1 allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via vectors that trigger a free of an uninitialized pointer...

SUSE CVE-2017-14988

Header::readfrom in IlmImf/ImfHeader.cpp in OpenEXR 2.2.0 allows remote attackers to cause a denial of service excessive memory allocation via a crafted file that is accessed with the ImfOpenInputFile function in IlmImf/ImfCRgbaFile.cpp. NOTE: The maintainer and multiple third parties believe tha...

SUSE CVE-2020-11758

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read in ImfOptimizedPixelReading.h...

PT-2021-7700 · Openexr +4 · Openexr +4

Name of the Vulnerable Software and Affected Versions: OpenEXR affected versions not specified Description: The issue is related to the RGBtoXYZ routine in the ImfChromaticities.cpp file, where certain division operations, such as float Z = 1 - chroma.white.x - chroma.white.y Y / chroma.white.y;...

Security update for libopenmpt (moderate)

openSUSE Security Update: Security update for libopenmpt Announcement ID: openSUSE-SU-2021:1914-1 Rating: moderate References: 1186663 Affected Products: openSUSE Leap 15.3 An update that contains security fixes can now be installed. Description: This update for libopenmpt fixes the following...

IMF could track your browsing history to determine credit score

By Deeba Ahmed IMF researchers hinted at the possibility of using the user's browsing history, including search and purchasing data to determine the credit rating. This is a post from HackRead.com Read the original post: IMF could track your browsing history to determine credit score...

DEBIAN-CVE-2020-15306

An issue was discovered in OpenEXR before v2.5.2. Invalid chunkCount attributes could cause a heap buffer overflow in getChunkOffsetTableSize in IlmImf/ImfMisc.cpp...

AZL-44967 CVE-2020-11763 affecting package OpenEXR 2.3.0-6

An issue was discovered in OpenEXR before 2.4.1. There is an std::vector out-of-bounds read and write, as demonstrated by ImfTileOffsets.cpp...

AZL-44829 CVE-2020-11765 affecting package OpenEXR 2.3.0-6

An issue was discovered in OpenEXR before 2.4.1. There is an off-by-one error in use of the ImfXdr.h read function by DwaCompressor::Classifier::Classifier, leading to an out-of-bounds read...

UBUNTU-CVE-2020-11764

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds write in copyIntoFrameBuffer in ImfMisc.cpp...

PT-2020-6214 · Openexr +7 · Openexr +7

Name of the Vulnerable Software and Affected Versions: OpenEXR versions prior to 2.4.1 Description: An issue in OpenEXR is related to an out-of-bounds write in the copyIntoFrameBuffer function in ImfMisc.cpp. This can potentially allow a remote attacker to cause a denial of service...