{"id":"JLSEC-2026-644","summary":"When decoding an OpenEXR file that uses DWAA or DWAB compression, the specified raw length of run...","details":"When decoding an OpenEXR file that uses DWAA or DWAB compression, the specified raw length of run-length-encoded data is not checked when using it to calculate the output data.\n\nWe read rle_raw_size from the input file at [0], we decompress and decode into the buffer td-\u003erle_raw_data of size rle_raw_size at [1], and then at [2] we will access entries in this buffer up to (td-\u003exsize - 1) * (td-\u003eysize - 1) + rle_raw_size / 2, which may exceed rle_raw_size.\n\nWe recommend upgrading to version 8.0 or beyond.","modified":"2026-06-26T20:34:16.982887047Z","published":"2026-06-26T20:24:16.337Z","upstream":["CVE-2025-59731","EUVD-2025-32181","GHSA-p7r5-qh99-qchm"],"database_specific":{"sources":[{"id":"CVE-2025-59731","url":"https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2025-59731","imported":"2026-06-26T19:19:59.725Z","published":"2025-10-06T08:15:34.770Z","database_specific":{"status":"Deferred"},"modified":"2026-06-17T09:46:36.573Z","html_url":"https://nvd.nist.gov/vuln/detail/CVE-2025-59731"},{"url":"https://api.github.com/advisories/GHSA-p7r5-qh99-qchm","imported":"2026-06-26T19:19:26.621Z","published":"2025-10-06T09:30:20Z","id":"GHSA-p7r5-qh99-qchm","modified":"2025-10-19T15:31:16Z","html_url":"https://github.com/advisories/GHSA-p7r5-qh99-qchm"},{"url":"https://euvdservices.enisa.europa.eu/api/enisaid?id=EUVD-2025-32181","imported":"2026-06-26T19:19:09.468Z","published":"2025-10-06T08:09:23Z","id":"EUVD-2025-32181","modified":"2026-02-26T17:48:18Z","html_url":"https://euvd.enisa.europa.eu/vulnerability/EUVD-2025-32181"}],"license":"CC-BY-4.0"},"references":[{"type":"WEB","url":"https://b.corp.google.com/issues/436510153"},{"type":"WEB","url":"https://github.com/advisories/GHSA-p7r5-qh99-qchm"},{"type":"WEB","url":"https://issuetracker.google.com/436510153"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-59731"}],"affected":[{"package":{"name":"FFMPEG_jll","ecosystem":"Julia","purl":"pkg:julia/FFMPEG_jll?uuid=b22a6f82-2f65-5046-a5b2-351ab43fb4e5"},"ranges":[{"type":"SEMVER","events":[{"introduced":"7.1.1+0"},{"fixed":"8.0.0+0"}]}],"database_specific":{"source":"https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2026/JLSEC-2026-644.json"}},{"package":{"name":"FFplay_jll","ecosystem":"Julia","purl":"pkg:julia/FFplay_jll?uuid=c4dce911-e170-5107-8314-c7bdc6785395"},"ranges":[{"type":"SEMVER","events":[{"introduced":"7.1.1+0"},{"fixed":"8.1.2+0"}]}],"database_specific":{"source":"https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2026/JLSEC-2026-644.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V4","score":"CVSS:4.0/AV:A/AC:H/AT:N/PR:L/UI:P/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N"}]}