CVE-2025-59731
Heap-buffer-overflow write in FFmpeg EXR dwa_uncompress
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
When decoding an OpenEXR file that uses DWAA or DWAB compression, the specified raw length of run-length-encoded data is not checked when using it to calculate the output data. We read rle_raw_size from the input file at [0], we decompress and decode into the buffer td->rle_raw_data of size rle_raw_size at [1], and then at [2] we will access entries in this buffer up to (td->xsize - 1) * (td->ysize - 1) + rle_raw_size / 2, which may exceed rle_raw_size. We recommend upgrading to version 8.0 or beyond.
| CWE | CWE-787 |
| Vendor | ffmpeg |
| Product | ffmpeg |
| Published | Oct 6, 2025 |
| Last Updated | Feb 26, 2026 |
Stay Ahead of the Next One
Get instant alerts for ffmpeg ffmpeg
Be the first to know when new unknown vulnerabilities affecting ffmpeg ffmpeg are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
Affected Versions
FFmpeg / FFmpeg
9a32b863074ed4140141e0d3613905c6f1fe61c5 < 8.0 7.1.1 < 8.0
References
Credits
Google Big Sleep