{"id":"JLSEC-2026-134","details":"An issue in Academy Software Foundation openexr v.3.2.3 and before allows a local attacker to cause a denial of service (DoS) via the convert function of exrmultipart.cpp.","modified":"2026-04-17T15:30:29.346698Z","published":"2026-04-17T15:19:54.657Z","upstream":["CVE-2024-31047"],"database_specific":{"sources":[{"imported":"2026-04-17T13:59:24.301Z","url":"https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2024-31047","id":"CVE-2024-31047","database_specific":{"status":"Analyzed"},"html_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-31047","modified":"2025-08-13T15:01:25.110Z","published":"2024-04-08T23:15:08.023Z"}],"license":"CC-BY-4.0"},"references":[{"type":"WEB","url":"https://github.com/AcademySoftwareFoundation/openexr/issues/1680"},{"type":"WEB","url":"https://github.com/AcademySoftwareFoundation/openexr/issues/1680"}],"affected":[{"package":{"name":"OpenEXR_jll","ecosystem":"Julia","purl":"pkg:julia/OpenEXR_jll?uuid=18a262bb-aa17-5467-a713-aee519bc75cb"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"3.2.4+0"}]}],"database_specific":{"source":"https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2026/JLSEC-2026-134.json"}}],"schema_version":"1.7.5"}