CVE-2026-26981

MEDIUM
中文标题:
(暂无数据)
英文标题:
OpenEXR has heap-buffer-overflow via signed integer underflow in ImfContextInit.cpp
CVSS分数: 6.5
发布时间: 2026-02-24 02:26:16
漏洞类型: (暂无数据)
状态: PUBLISHED
数据质量分数: 0.40
数据版本: v3
漏洞描述
中文描述:

(暂无数据)

英文描述:

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.0 through 3.3.6 and 3.4.0 through 3.4.4, a heap-buffer-overflow (OOB read) occurs in the `istream_nonparallel_read` function in `ImfContextInit.cpp` when parsing a malformed EXR file through a memory-mapped `IStream`. A signed integer subtraction produces a negative value that is implicitly converted to `size_t`, resulting in a massive length being passed to `memcpy`. Versions 3.3.7 and 3.4.5 contain a patch.

CWE类型:
CWE-195
标签:
(暂无数据)
受影响产品
厂商 产品 版本 版本范围 平台 CPE
AcademySoftwareFoundation openexr >= 3.3.0, < 3.3.7 - - cpe:2.3:a:academysoftwarefoundation:openexr:>=_3.3.0,_<_3.3.7:*:*:*:*:*:*:*
AcademySoftwareFoundation openexr >= 3.4.0, < 3.4.5 - - cpe:2.3:a:academysoftwarefoundation:openexr:>=_3.4.0,_<_3.4.5:*:*:*:*:*:*:*
openexr openexr * - - cpe:2.3:a:openexr:openexr:*:*:*:*:*:*:*:*
解决方案
中文解决方案:
(暂无数据)
英文解决方案:
(暂无数据)
临时解决方案:
(暂无数据)
参考链接
https://github.com/AcademySoftwareFoundation/openexr/security/advisories/GHSA-q6vj-wxvf-5m8c x_refsource_CONFIRM
cve.org
访问
https://github.com/AcademySoftwareFoundation/openexr/commit/6bb2ddf1068573d073edf81270a015b38cc05cef x_refsource_MISC
cve.org
访问
https://github.com/AcademySoftwareFoundation/openexr/commit/d2be382758adc3e9ab83a3de35138ec28d93ebd8 x_refsource_MISC
cve.org
访问
CVSS评分详情
3.1 (cna)
MEDIUM
6.5
CVSS向量: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
机密性
NONE
完整性
NONE
可用性
HIGH
时间信息
发布时间:
2026-02-24 02:26:16
修改时间:
2026-02-24 02:26:16
创建时间:
2026-02-24 06:00:01
更新时间:
2026-02-26 06:00:04
利用信息
暂无可利用代码信息
数据源详情
数据源 记录ID 版本 提取时间
CVE cve_CVE-2026-26981 2026-02-24 03:19:37 2026-02-23 22:00:01
NVD nvd_CVE-2026-26981 2026-02-25 02:00:04 2026-02-24 22:00:03
版本与语言
当前版本: v3
主要语言: EN
支持语言:
EN
安全公告
暂无安全公告信息
变更历史
v3 NVD
2026-02-26 06:00:04
affected_products_count: 2 → 3
查看详细变更
  • affected_products_count: 2 -> 3
v2 NVD
2026-02-25 06:00:03
data_sources: ['cve'] → ['cve', 'nvd']
查看详细变更
  • data_sources: ['cve'] -> ['cve', 'nvd']