HIGH🇵🇱 Wersja polska

CVE-2026-34379

CVSS 7.1v3.1pub. 2026-04-06upd. 2026-06-30

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From 3.2.0 to before 3.2.7, 3.3.9, and 3.4.9, a misaligned memory write vulnerability exists in LossyDctDecoder_execute() in src/lib/OpenEXRCore/internal_dwa_decoder.h:749. When decoding a DWA or DWAB-compressed EXR file containing a FLOAT-type channel, the decoder performs an in-place HALF→FLOAT conversion by casting an unaligned uint8_t * row pointer to float * and writing through it. Because the row buffer may not be 4-byte aligned, this constitutes undefined behavior under the C standard and crashes immediately on architectures that enforce alignment (ARM, RISC-V, etc.). On x86 it is silently tolerated at runtime but remains exploitable via compiler optimizations that assume aligned access. This vulnerability is fixed in 3.2.7, 3.3.9, and 3.4.9.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H
  • Openexr

    APP
    Openexr
    3.2.0 – 3.2.7 (bez)3.3.0 – 3.3.9 (bez)3.4.0 – 3.4.9 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2023-5841CRITICAL9.1PL ✓ten sam produkt

Heap-based buffer overflow w bibliotece OpenEXR przy parsowaniu deep scanline

CVE-2026-45696HIGH8.3ten sam produkt

OpenEXR is the reference implementation and specification for the EXR image format, widely used in the motion ...

CVE-2026-42216HIGH8.8ten sam produkt

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma...

CVE-2026-41142HIGH8.8ten sam produkt

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma...

CVE-2026-40244HIGH8.4ten sam produkt

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma...