OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.4.0 through 3.4.9, 3.3.0 through 3.3.9, and 3.2.0 through 3.2.7, `internal_dwa_compressor.h:1040` performs `chan->width * chan->bytes_per_element` in `int32` arithmetic without a `(size_t)` cast. This is the same overflow pattern fixed in other decoders by CVE-2026-34589/34588/34544, but this line was missed. Versions 3.4.10, 3.3.10, and 3.2.8 contain a fix that addresses `internal_dwa_compressor.h:1040`.
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XOpenexr
APPOpenexr3.2.0 – 3.2.8 (bez)3.3.0 – 3.3.10 (bez)3.4.0 – 3.4.10 (bez)
Related vulnerabilities
Heap-based buffer overflow w bibliotece OpenEXR przy parsowaniu deep scanline
OpenEXR is the reference implementation and specification for the EXR image format, widely used in the motion ...
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma...
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma...
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma...