A flaw was found in OpenEXR’s hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. This flaw allows an attacker who can submit a crafted file that is processed by OpenEXR, to trigger an integer overflow. The highest threat from this vulnerability is to system availability.
[
{
"vendor": "n/a",
"product": "OpenEXR",
"versions": [
{
"version": "Fixed in v2.5.4 and beyond.",
"status": "affected"
}
]
}
]