Improper locking in OpenEXR - #VU135031
Published: June 23, 2026
OpenEXR
Detailed vulnerability description
The vulnerability allows a local user to cause a denial of service.
The vulnerability exists due to improper locking in exr_get_chunk_table_offset() when handling write contexts before the header has been written. A local user can call the public OpenEXRCore C API in a sequence that leaves the context locked to cause a denial of service.
A later API call that attempts to acquire the same lock can block forever, resulting in a deterministic self-deadlock and process hang.