JLSEC-2026-142

See a problem?
Please try reporting it to the source first.

Source

https://github.com/JuliaLang/SecurityAdvisories.jl/blob/main/advisories/published/2026/JLSEC-2026-142.md

Import Source

https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2026/JLSEC-2026-142.json

JSON Data

https://api.osv.dev/v1/vulns/JLSEC-2026-142

Upstream

CVE-2026-34378

Published

2026-04-17T15:19:54.657Z

Modified

2026-04-17T15:31:12.600846Z

Summary

[none]

Details

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From 3.4.0 to before 3.4.9, a missing bounds check on the dataWindow attribute in EXR file headers allows an attacker to trigger a signed integer overflow in generic_unpack(). By setting dataWindow.min.x to a large negative value, OpenEXRCore computes an enormous image width, which is later used in a signed integer multiplication that overflows, causing the process to terminate with SIGILL via UBSan. This vulnerability is fixed in 3.4.9.

Database specific

{
    "sources": [
        {
            "url": "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2026-34378",
            "database_specific": {
                "status": "Analyzed"
            },
            "html_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34378",
            "modified": "2026-04-07T19:05:27.463Z",
            "id": "CVE-2026-34378",
            "imported": "2026-04-17T13:59:24.581Z",
            "published": "2026-04-06T16:16:35.057Z"
        }
    ],
    "license": "CC-BY-4.0"
}

References

Affected packages

Julia / OpenEXR_jll

Package

Name: OpenEXR_jll
Purl: pkg:julia/OpenEXR_jll?uuid=18a262bb-aa17-5467-a713-aee519bc75cb

Affected ranges

Type: SEMVER
Events: Introduced

3.4.4+0

Fixed

3.4.9+0

Database specific

source

"https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2026/JLSEC-2026-142.json"