Out-of-bounds write in OpenEXR - CVE-2026-55059
Published: June 23, 2026
OpenEXR
Detailed vulnerability description
The vulnerability allows a remote attacker to cause a denial of service.
The vulnerability exists due to out-of-bounds write in Imf_4_0::SampleCountChannel::set(int r, unsigned int newNumSamples[]) when processing row-based sample-count updates through the OpenEXRUtil DeepImage API. A remote attacker can trick the victim into opening a crafted file to cause a denial of service.
User interaction is required, and exploitation requires image data windows whose X and Y origins differ.