CVE-2025-48071 OpenEXR's Forged Unpacked Size can Lead to Heap-Based Buffer Overflow in Deep Scanline Parsing

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.2 through 3.3.0, there is a heap-based buffer overflow during a write operation when decompressing ZIPS-packed deep scan-line EXR files...

GHSA-QXH9-R8XW-7V99 OpenEXR invalid write

In OpenEXR 2.2.0, an invalid write of size 8 in the storeSSE function in ImfOptimizedPixelReading.h could cause the application to crash or execute arbitrary code...

SUSE-SU-2022:0062-1 Security update for openexr

This update for openexr fixes the following issues: - CVE-2021-45942: Fixed heap-based buffer overflow in Imf31:LineCompositeTask:execute. bsc1194333...

Denial Of Service

openexr is vulnerable to denial of service. The vulnerability exists due to an out-of-bounds write on the heap...

OPENSUSE-SU-2021:0925-1 Security update for openexr

This update for openexr fixes the following issues: - Fixed CVE-2021-3605 bsc1187395: Heap buffer overflow in the rleUncompress function - Fixed CVE-2021-3598 bsc1187310: Heap buffer overflow in Imf31:CharPtrIO:readChars This update was imported from the SUSE:SLE-15:Update update project...

Denial Of Service (DoS)

openexr is vulnerable to denial of service. The vulnerability exists due to Heap-buffer-overflow in Imf25::copyIntoFrameBuffer...

PT-2020-6205 · Ilm +4 · Openexr +4

Name of the Vulnerable Software and Affected Versions: OpenEXR versions prior to 2.5.2 Description: The issue is related to a heap buffer overflow in the getChunkOffsetTableSize function in IlmImf/ImfMisc.cpp. This overflow can occur due to invalid chunkCount attributes. The exploitation of this...