Reachable assertion in OpenEXR - CVE-2026-53532
Published: June 23, 2026
OpenEXR
Detailed vulnerability description
The vulnerability allows a remote attacker to cause a denial of service.
The vulnerability exists due to reachable assertion in param_qcd::get_irrev_delta() in the vendored OpenJPH library when parsing a crafted HTJ2K-compressed EXR file. A remote attacker can trick the victim into opening a crafted file to cause a denial of service.
The issue is triggered by a QCD marker with Sqcd & 0x1F equal to 0, causing an unconditional process abort that cannot be caught by try/catch.