AIKIDO-2026-10333
AcademySoftwareFoundation.openexr is vulnerable to Heap-based buffer overflow
66
Medium Risk
This Affects:
AcademySoftwareFoundation.openexrTL;DR
Affected versions of this package contain a flaw in istream_nonparallel_read where incorrect bounds handling during stream reads can lead to improper size adjustment when nread + sz exceeds the stream size, potentially producing a negative or incorrect length. An attacker controlling a crafted file or input stream could manipulate the offset and requested size so the resulting calculation underflows or bypasses expected bounds, leading to out-of-bounds reads or memory corruption. By supplying a maliciously structured OpenEXR file or stream that triggers the faulty size logic, the attacker may cause the application to read invalid memory regions, potentially resulting in denial of service or further memory-safety exploitation depending on downstream usage of the buffer.
Who does this affect?
You are affected if you are using a version that falls within the vulnerable range.
Background info
AcademySoftwareFoundation.openexr is vulnerable to Heap-based buffer overflow in versions 3.0.0 - 3.3.6 and 3.4.0 - 3.4.4.
How to fix this
Upgrade the OpenEXR library to a patch version.
Links
Fix Commits
github.com/AcademySoftwareFoundation/openexr/commit/6bb2ddf1068573d073edf81270a015b38cc05cefgithub.com/AcademySoftwareFoundation/openexr/commit/d2be382758adc3e9ab83a3de35138ec28d93ebd8
Are You Affected?
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.
SOC 2Compliant
ISO 27001Compliant