openexr is vulnerable to denial of service (DoS). The vulnerability exists through a flaw in OpenEXR’s deep tile sample size calculations in versions before 3.0.0-beta, that could trigger an integer overflow, subsequently leading to an out-of-bounds read.