JLSEC-2026-644

Source
https://github.com/JuliaLang/SecurityAdvisories.jl/blob/main/advisories/published/2026/JLSEC-2026-644.md
Import Source
https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2026/JLSEC-2026-644.json
JSON Data
https://api.osv.dev/v1/vulns/JLSEC-2026-644
Upstream
  • CVE-2025-59731
  • EUVD-2025-32181
  • GHSA-p7r5-qh99-qchm
Published
2026-06-26T20:24:16.337Z
Modified
2026-06-26T20:34:16.982887047Z
Severity
  • 6.9 (Medium) CVSS_V4 - CVSS:4.0/AV:A/AC:H/AT:N/PR:L/UI:P/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N CVSS Calculator
Summary
When decoding an OpenEXR file that uses DWAA or DWAB compression, the specified raw length of run...
Details

When decoding an OpenEXR file that uses DWAA or DWAB compression, the specified raw length of run-length-encoded data is not checked when using it to calculate the output data.

We read rlerawsize from the input file at [0], we decompress and decode into the buffer td->rlerawdata of size rlerawsize at [1], and then at [2] we will access entries in this buffer up to (td->xsize - 1) * (td->ysize - 1) + rlerawsize / 2, which may exceed rlerawsize.

We recommend upgrading to version 8.0 or beyond.

Database specific
{
    "license": "CC-BY-4.0",
    "sources": [
        {
            "id": "CVE-2025-59731",
            "published": "2025-10-06T08:15:34.770Z",
            "modified": "2026-06-17T09:46:36.573Z",
            "html_url": "https://nvd.nist.gov/vuln/detail/CVE-2025-59731",
            "url": "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2025-59731",
            "database_specific": {
                "status": "Deferred"
            },
            "imported": "2026-06-26T19:19:59.725Z"
        },
        {
            "id": "GHSA-p7r5-qh99-qchm",
            "modified": "2025-10-19T15:31:16Z",
            "html_url": "https://github.com/advisories/GHSA-p7r5-qh99-qchm",
            "url": "https://api.github.com/advisories/GHSA-p7r5-qh99-qchm",
            "published": "2025-10-06T09:30:20Z",
            "imported": "2026-06-26T19:19:26.621Z"
        },
        {
            "id": "EUVD-2025-32181",
            "modified": "2026-02-26T17:48:18Z",
            "html_url": "https://euvd.enisa.europa.eu/vulnerability/EUVD-2025-32181",
            "url": "https://euvdservices.enisa.europa.eu/api/enisaid?id=EUVD-2025-32181",
            "published": "2025-10-06T08:09:23Z",
            "imported": "2026-06-26T19:19:09.468Z"
        }
    ]
}
References

Affected packages

Julia / FFMPEG_jll

Package

Name
FFMPEG_jll
Purl
pkg:julia/FFMPEG_jll?uuid=b22a6f82-2f65-5046-a5b2-351ab43fb4e5

Affected ranges

Type
SEMVER
Events
Introduced
7.1.1+0
Fixed
8.0.0+0

Database specific

source
"https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2026/JLSEC-2026-644.json"

Julia / FFplay_jll

Package

Name
FFplay_jll
Purl
pkg:julia/FFplay_jll?uuid=c4dce911-e170-5107-8314-c7bdc6785395

Affected ranges

Type
SEMVER
Events
Introduced
7.1.1+0
Fixed
8.1.2+0

Database specific

source
"https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2026/JLSEC-2026-644.json"