OpenEXR 3.1.x before 3.1.4 has a heap-based buffer overflow in Imf 3 1::LineCompositeTask::execute (called from IlmThread 3 1::NullThreadPoolProvider::addTask and IlmThread 3 1::ThreadPool::addGlobalTask). NOTE: db217f2 may be inapplicable.