CVE-2025-48073 — NULL Pointer Dereference in Openexr

CWE-476 — NULL Pointer Dereference6 documents5 sources

Severity

4.6MEDIUMNVD

EPSS

0.1%

top 81.61%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Openexr Academysoftwarefoundation Openexr Debian Openexr

Timeline

PublishedJul 31

Description

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In version 3.3.2, when reading a deep scanline image with a large sample count in reduceMemory mode, it is possible to crash a target application with a NULL pointer dereference in a write operation. This is fixed in version 3.3.3.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

Affected Packages4 packages

▶PyPIopenexr/openexr3.3.2 — 3.3.3

▶debiandebian/openexr

▶NVDopenexr/openexr3.3.2

▶CVEListV5academysoftwarefoundation/openexr>= 3.3.2, < 3.3.3

🔴Vulnerability Details

OSV

CVE-2025-48073: OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry↗2025-07-31

▶

GHSA

OpenEXR ScanLineProcess::run_fill NULL Pointer Write In "reduceMemory" Mode↗2025-07-31

▶

OSV

OpenEXR ScanLineProcess::run_fill NULL Pointer Write In "reduceMemory" Mode↗2025-07-31

▶

📋Vendor Advisories

Red Hat

openexr: OpenEXR NULL pointer dereference↗2025-07-31

▶

Debian

CVE-2025-48073: openexr - OpenEXR provides the specification and reference implementation of the EXR file ...↗2025

▶