Jump to:

CVE-2024-31047

Jump to:

CVE-2024-31047

Package openexr updated to version 2.3.0-alt1.c9f2.2 for branch c9f2 in task 394552.

Published: 2024-04-08
Modified: 2025-08-13

CVE-2024-31047

An issue in Academy Software Foundation openexr v.3.2.3 and before allows a local attacker to cause a denial of service (DoS) via the convert function of exrmultipart.cpp.

Severity: LOW (3.3) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

References:

https://github.com/AcademySoftwareFoundation/openexr/issues/1680
https://github.com/AcademySoftwareFoundation/openexr/issues/1680

Version: 2.1.2

Package openexr update in c9f2 on 2025-09-22

ALT-PU-2025-11546-3

Closed vulnerabilities

CVE-2024-31047