2 matches found
OSV-2025-865 Heap-buffer-overflow in generic_unpack
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=456158449 Crash type: Heap-buffer-overflow READ 4 Crash state: genericunpack Imf34::ScanLineInputFile::Data::readPixels Imf34::InputFile::readPixels...
The vulnerability of the DeepScanLineInputFile() function in software for storing images with wide dynamic range brightness in OpenEXR, related to memory usage after deallocation, allows a hacker to cause a service failure.
The vulnerability of the DeepScanLineInputFile function in software for storing images in OpenEXR format with a wide dynamic range of brightness levels is related to the use of memory areas after they are freed. Exploiting this vulnerability could allow an attacker to cause a service failure...