CVE Details
Basic Information
| Title | OpenEXR ScanLineProcess::run_fill NULL Pointer Write In “reduceMemory” Mode |
|---|---|
| Type | cve |
| Published | 2025-07-31T20:25:51.545Z |
| Modified | 2025-07-31T20:36:41.060Z |
Product Information
| Vendor | AcademySoftwareFoundation |
|---|---|
| Product | openexr |
| Version | >= 3.3.2, < 3.3.3 |
CVSS Information
| Base Score | 4.6 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N |
AI Analysis
| AI Description | A vulnerability in OpenEXR version 3.3.2 allows a crash due to a NULL pointer dereference when processing deep scanline images in reduceMemory mode. This issue is resolved in version 3.3.3. |
|---|---|
| AI Severity | Medium |
| AI Vendor | Academy Software Foundation |
| AI Product | OpenEXR |
| AI Version | 3.3.2 |
Affected Products
- AcademySoftwareFoundation openexr >= 3.3.2, < 3.3.3
Additional Information
| CWE List | CWE-476 |
|---|---|
| Source | GitHub_M |
Description
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In version 3.3.2, when reading a deep scanline image with a large sample count in reduceMemory mode, it is possible to crash a target application with a NULL pointer dereference in a write operation. This is fixed in version 3.3.3.