Name of the Vulnerable Software and Affected Versions:

OpenEXR versions 3.3.2

Description:

OpenEXR is an image storage format used in the motion picture industry. A NULL pointer dereference can occur in a write operation when reading a deep scanline image with a large sample count in reduceMemory mode in version 3.3.2, potentially causing a target application to crash.

Recommendations:

Update to version 3.3.3 or later.