CVE-2025-64183

Name of the Vulnerable Software and Affected Versions OpenEXR versions 3.2.0 through 3.2.4 OpenEXR versions 3.3.0 through 3.3.5 OpenEXR versions 3.4.0 through 3.4.2

Description OpenEXR is an image storage format used in the motion picture industry. A use-after-free condition exists in the PyObject StealAttrString function within pyOpenEXR old.cpp in versions 3.2.0 through 3.2.4, 3.3.0 through 3.3.5, and 3.4.0 through 3.4.2. The function obtains a new reference using PyObject GetAttrString, immediately decrements it, and returns a pointer. This results in a dangling pointer being passed to APIs like PyLong AsLong and PyFloat AsDouble, leading to a use-after-free. This issue is triggered when reading attributes such as PixelType.v, Box2i, and V2f.

Recommendations OpenEXR version 3.2.5 OpenEXR version 3.3.6 OpenEXR version 3.4.3