VYPR

rpm package

almalinux/openexr-devel

pkg:rpm/almalinux/openexr-devel

Vulnerabilities (3)

  • CVE-2026-34588HigApr 6, 2026
    affected < 3.1.1-3.el9_7.2fixed 3.1.1-3.el9_7.2

    OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From 3.1.0 to before 3.2.7, 3.3.9, and 3.4.9, internal_exr_undo_piz() advances the working wavelet pointer with signed 32-bit arithmeti

  • CVE-2026-27622Mar 3, 2026
    affected < 3.1.10-8.el10_1.1fixed 3.1.10-8.el10_1.1

    OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In CompositeDeepScanLine::readPixels, per-pixel totals are accumulated in vector total_sizes for attacker-controlled larg

  • CVE-2023-5841Feb 1, 2024
    affected < 3.1.1-2.el9_4.1fixed 3.1.1-2.el9_4.1

    Due to a failure in validating the number of scanline samples of a OpenEXR file containing deep scanline data, Academy Software Foundation OpenEX image parsing library version 3.2.1 and prior is susceptible to a heap-based buffer overflow vulnerability. This issue was resolved as