conf-openimageio

Opam page: https://opam.ocaml.org/packages/conf-openimageio/

Versions

Version
conf-openimageio.1 (latest)

Vulnerable external dependencies (76)

Product	For package	Vendor	Severity	CVE	Published
libopenexr-dev	conf-openimageio.1	AcademySoftwareFoundation	Medium	CVE-2026-42217 - OpenEXR: Shift exponent overflow in `readVariableLengthInteger()` (`ImfIDManifest.cpp`)	5/7/2026
libopenexr-dev	conf-openimageio.1	AcademySoftwareFoundation	High	CVE-2026-42216 - OpenEXR: Out-of-bounds read in `IDManifest::init()` during prefix expansion	5/7/2026
libopenexr-dev	conf-openimageio.1	AcademySoftwareFoundation	High	CVE-2026-41142 - OpenEXR is Vulnerable to Integer overflow in ImageChannel::resize leads to heap OOB write via OpenEXRUtil public API	5/7/2026
libopenexr-dev	conf-openimageio.1	AcademySoftwareFoundation	High	CVE-2026-40250 - OpenEXR has integer overflow in DWA decoder outBufferEnd pointer arithmetic (missed variant of CVE-2026-34589)	4/21/2026
libopenexr-dev	conf-openimageio.1	AcademySoftwareFoundation	High	CVE-2026-40244 - OpenEXR has integer overflow in DWA setupChannelData planarUncRle pointer arithmetic (missed variant of CVE-2026-34589)	4/21/2026
libopenexr-dev	conf-openimageio.1	AcademySoftwareFoundation	Medium	CVE-2026-39886 - OpenEXR has HTJ2K Signed Integer Overflow in ht_undo_impl()	4/21/2026
libopenexr-dev	conf-openimageio.1	AcademySoftwareFoundation	High	CVE-2026-34589 - OpenEXR: DWA Lossy Decoder Heap Out-of-Bounds Write	4/6/2026
libopenexr-dev	conf-openimageio.1	AcademySoftwareFoundation	High	CVE-2026-34588 - OpenEXR has a signed 32-bit Overflow in PIZ Decoder Leads to OOB Read/Write	4/6/2026
libopenexr-dev	conf-openimageio.1	AcademySoftwareFoundation	High	CVE-2026-34545 - OpenEXR: integer overflow lead to OOB in HTJ2K decoder	4/1/2026
libopenexr-dev	conf-openimageio.1	AcademySoftwareFoundation	High	CVE-2026-34544 - OpenEXR: integer overflow to OOB write in uncompress_b44_impl()	4/1/2026
libopenexr-dev	conf-openimageio.1	AcademySoftwareFoundation	High	CVE-2026-34543 - OpenEXR: Heap information disclosure in PXR24 decompression via unchecked decompressed size (undo_pxr24_impl)	4/1/2026
libopenexr-dev	conf-openimageio.1	AcademySoftwareFoundation	Medium	CVE-2026-34380 - OpenEXR has a signed integer overflow (undefined behavior) in undo_pxr24_impl may allow bounds-check bypass in PXR24 decompression	4/6/2026
libopenexr-dev	conf-openimageio.1	AcademySoftwareFoundation	High	CVE-2026-34379 - OpenEXR has a misaligned write in LossyDctDecoder_execute leading to undefined behavior (DWA/DWAB decompression)	4/6/2026
libopenexr-dev	conf-openimageio.1	AcademySoftwareFoundation	Medium	CVE-2026-34378 - OpenEXR has a signed integer overflow in generic_unpack() when parsing EXR files with crafted negative dataWindow.min.x	4/6/2026
libopenexr-dev	conf-openimageio.1	AcademySoftwareFoundation	High	CVE-2026-27622 - OpenEXR CompositeDeepScanLine integer-overflow leads to heap OOB write	3/3/2026
libopenexr-dev	conf-openimageio.1	AcademySoftwareFoundation	Medium	CVE-2026-26981 - OpenEXR has heap-buffer-overflow via signed integer underflow in ImfContextInit.cpp	2/24/2026
libopenexr-dev	conf-openimageio.1	AcademySoftwareFoundation	Medium	CVE-2025-64183 - OpenEXR has use after free in PyObject_StealAttrString	11/10/2025
libopenexr-dev	conf-openimageio.1	AcademySoftwareFoundation	Medium	CVE-2025-64182 - OpenEXR has buffer overflow in PyOpenEXR_old's channels() and channel()	11/10/2025
libopenexr-dev	conf-openimageio.1	AcademySoftwareFoundation	Low	CVE-2025-64181 - OpenEXR Makes Use of Uninitialized Memory	11/10/2025
libopenexr-dev	conf-openimageio.1	AcademySoftwareFoundation	Medium	CVE-2025-48074 - OpenEXR's Unbounded File Header Values can Lead to Out-Of-Memory Errors	8/1/2025

conf-openimageio Subscribe

Versions

Vulnerable external dependencies (76)

conf-openimageio