Lucene search
K

5 matches found

Snyk
Snyk
added 2026/04/01 10:25 p.m.2 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow via the HTJ2K decoder. An attacker can execute arbitrary code or cause a denial of service by providing a crafted .exr file with HTJ2K compression and a channel width of 32768, which results in controlled data...

8.8CVSS6.4AI score0.00611EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2026/04/01 9:17 p.m.4 views

CVE-2026-34545

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From version 3.4.0 to before version 3.4.7, an attacker providing a crafted .exr file with HTJ2K compression and a channel width of 32768 can write...

8.4CVSS6.1AI score0.00611EPSS
Exploits1References4
EUVD
EUVD
added 2026/04/01 8:51 p.m.6 views

EUVD-2026-18062

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From version 3.4.0 to before version 3.4.7, an attacker providing a crafted .exr file with HTJ2K compression and a channel width of 32768 can write...

8.4CVSS6.5AI score0.00611EPSS
Exploits1References3
CVE
CVE
added 2026/04/01 8:51 p.m.15 views

CVE-2026-34545

CVE-2026-34545 affects OpenEXR versions 3.4.0–3.4.6, where decoding an EXR file using HTJ2K compression with a channel width of 32768 can trigger a heap write overflow. The overflow occurs while decoding and writes beyond the output heap buffer, with a write primitive of 2 bytes per overflow iter...

8.8CVSS6.5AI score0.00611EPSS
Exploits1References6Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/01 12:0 a.m.4 views

PT-2026-29622

Name of the Vulnerable Software and Affected Versions OpenEXR versions 3.4.0 through 3.4.6 Description OpenEXR, a specification and reference implementation of the EXR file format used in the motion picture industry, contains a flaw. A crafted .exr file utilizing HTJ2K compression and a channel...

8.4CVSS6.4AI score0.00611EPSS
Exploits1References23
Rows per page
Query Builder