Due to a failure in validating the number of scanline samples of a OpenEXR file containing deep scanline data, Academy Software Foundation OpenEX image parsing library version 3.2.1 and prior is susceptible to a heap-based buffer overflow vulnerability. This issue was resolved as of versions v3.2.2 and v3.1.12 of the affected library.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:NOpenexr
APPOpenexr≤ 3.2.1
Related vulnerabilities
OpenEXR is the reference implementation and specification for the EXR image format, widely used in the motion ...
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma...
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma...
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma...
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma...