CVE-2025-64182

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-64182

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-64182.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-64182

Aliases

GHSA-vh63-9mqx-wmjr

Downstream

UBUNTU-CVE-2025-64182

Published

2025-11-10T21:27:21.176Z

Modified

2025-12-05T10:21:35.449133Z

Severity

5.5 (Medium) CVSS_V4 - CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:P CVSS Calculator

Summary

OpenEXR has buffer overflow in PyOpenEXR_old's channels() and channel()

Details

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.2.0 through 3.2.4, 3.3.0 through 3.3.5, and 3.4.0 through 3.4.2, a memory safety bug in the legacy OpenEXR Python adapter (the deprecated OpenEXR.InputFile wrapper) allow crashes and likely code execution when opening attacker-controlled EXR files or when passing crafted Python objects. Integer overflow and unchecked allocation in InputFile.channel() and InputFile.channels() can lead to heap overflow (32 bit) or a NULL deref (64 bit). Versions 3.2.5, 3.3.6, and 3.4.3 contain a patch for the issue.

Database specific

{
    "cwe_ids": [
        "CWE-120"
    ],
    "cna_assigner": "GitHub_M",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/64xxx/CVE-2025-64182.json"
}

References

Affected packages

Git / github.com/academysoftwarefoundation/openexr

Affected ranges

Type

GIT

Repo

https://github.com/academysoftwarefoundation/openexr

Events

Introduced

456bf42dc2fddb647c0e9ab911656e5cf757fc36

Fixed

59fe81b806151d870648f702442b83730e6e6473

Database specific

{
    "versions": [
        {
            "introduced": "3.2.0"
        },
        {
            "fixed": "3.2.5"
        }
    ]
}

Type

GIT

Repo

https://github.com/academysoftwarefoundation/openexr

Events

Introduced

c7d3eac70ccde2c4ed484c6638b83ba872f71464

Fixed

027f33284f146d91bf983a58c8ea50c36154f339

Database specific

{
    "versions": [
        {
            "introduced": "3.3.0"
        },
        {
            "fixed": "3.3.6"
        }
    ]
}

Type

GIT

Repo

https://github.com/academysoftwarefoundation/openexr

Events

Introduced

20a65852895894434bea88613f6d29ac8e88bd6e

Fixed

042c83d28dc8ad754f970800a651509ca61a0570

Database specific

{
    "versions": [
        {
            "introduced": "3.4.0"
        },
        {
            "fixed": "3.4.3"
        }
    ]
}

Affected versions

v3.*

v3.2.0

v3.2.0-rc4

v3.2.1

v3.2.1-rc

v3.2.2

v3.2.2-rc

v3.2.2-rc2

v3.2.3

v3.2.3-rc

v3.2.3-rc2

v3.2.4

v3.2.4-rc

v3.2.4-rc2

v3.3.0

v3.3.0-rc2

v3.3.1

v3.3.1-rc

v3.3.2

v3.3.2-rc

v3.3.2-rc2

v3.3.2-rc3

v3.3.2-rc4

v3.3.3

v3.3.3-rc

v3.3.3-rc1

v3.3.4

v3.3.4-rc

v3.3.5

v3.3.5-rc

v3.3.5-rc3

v3.3.6-rc

v3.3.6-rc2

v3.3.6-rc3

v3.3.6-rc4

v3.4.0

v3.4.1

v3.4.1-rc

v3.4.1-rc2

v3.4.2

v3.4.2-rc

v3.4.2-rc2

v3.4.3-rc

v3.4.3-rc2