Your submission was sent successfully! Close

USN-5150-1: OpenEXR vulnerability

17 November 2021

OpenEXR could be made to crash if it opened a specially crafted file.



  • openexr - tools for the OpenEXR image format


It was discovered that OpenEXR incorrectly handled certain EXR image files.
An attacker could possibly use this issue to cause a crash.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 18.04
Ubuntu 16.04

In general, a standard system update will make all the necessary changes.


Related notices

  • USN-4996-3: libopenexr24, openexr-doc, libopenexr-dev, openexr