academysoftwarefoundation

Top products

The 15 most recently published vulnerabilities affecting academysoftwarefoundation.

• CVE-2026-44663OpenEXR: Integer overflow in the HTJ2K decoder leads to heap-buffer-overflow6.1Jun 18, 2026
• CVE-2026-43903OpenImageIO: SGI RLE decoder heap buffer overflow OIIO_DASSERT bounds checks are no-ops in release builds7.8May 14, 2026
• CVE-2026-43904OpenImageIO: Softimage PIC RLE decoder heap buffer overflow — longCount not clamped to image width7.8May 14, 2026
• CVE-2026-43905OpenImageIO: JPEG2000 (OpenJPH) signed integer overflow in buffer allocation7.8May 14, 2026
• CVE-2026-43996OpenImageIO: Integer wraparound in bounds check of decode_pixel leads to out-of-bounds read in TGA paletted image decoder5.5May 14, 2026
• CVE-2026-43907OpenImageIO: Integer overflow in QueryRGBBufferSizeInternal leads to heap out-of-bounds write in DPX decoder (kCbYCr and kABGR)8.3May 14, 2026
• CVE-2026-43908OpenImageIO: Signed integer overflow in ConvertCbYCrYToRGB leads to heap out-of-bounds write in DPX 4:2:2 decoder8.8May 14, 2026
• CVE-2026-43909OpenImageIO: Signed integer overflow in SwapRGBABytes loop index leads to out-of-bounds read/write in DPX ABGR decoder8.8May 14, 2026
• CVE-2026-43906OpenImageIO: HEIF Heap overflow7.8May 14, 2026
• CVE-2026-42217OpenEXR: Shift exponent overflow in `readVariableLengthInteger()` (`ImfIDManifest.cpp`)9.8May 7, 2026
• CVE-2026-42216OpenEXR: Out-of-bounds read in `IDManifest::init()` during prefix expansion9.1May 7, 2026
• CVE-2026-41142OpenEXR is Vulnerable to Integer overflow in ImageChannel::resize leads to heap OOB write via OpenEXRUtil public API8.8May 7, 2026
• CVE-2026-7582AcademySoftwareFoundation OpenImageIO DDS Image ddsinput.cpp out-of-bounds write5.3May 1, 2026
• CVE-2026-40250OpenEXR has integer overflow in DWA decoder outBufferEnd pointer arithmetic (missed variant of CVE-2026-34589)7.1Apr 21, 2026
• CVE-2026-40244OpenEXR has integer overflow in DWA setupChannelData planarUncRle pointer arithmetic (missed variant of CVE-2026-34589)7.1Apr 21, 2026