Buffer Overflow Vulnerability in OpenImageIO Affecting Image Processing Functions
CVE-2026-43905

7.1HIGH

Key Information:

Vendor: Academysoftwarefoundation
Status: Openimageio
Vendor: CVE Published:; 14 May 2026

🔔 Create Academysoftwarefoundation Vulnerability Alert

What is CVE-2026-43905?

The vulnerability arises in OpenImageIO's jpeg2000input.cpp due to inadequate buffer size calculation using signed 32-bit arithmetic. This can lead to a scenario where the resulting buffer size becomes zero or a small value if the computed dimensions exceed INT_MAX. As a result, the resizing of the buffer through m_buf.resize() allocates insufficient memory, creating an opportunity for heap overflow during subsequent pixel write operations. This issue is conditional on the USE_OPENJPH build flag and has been addressed in versions 3.0.18.0 and 3.1.13.0.

Affected Version(s)

OpenImageIO < 3.0.18.0 < 3.0.18.0

OpenImageIO >= 3.1.4.0-beta, < 3.1.13.0 < 3.1.4.0-beta, 3.1.13.0

References

https://github.com/AcademySoftwareFoundation/OpenImageIO/...

x_refsource_CONFIRM

CVSS V4

Score:

7.1

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 14, 2026
Vulnerability Reserved
May 4, 2026

CVE-2026-43905 Data

JSON