CVE-2018-18443

MEDIUM

OpenEXR 2.3.0 - Memory Leak in ThreadPool

Title source: llm

OpenEXR 2.3.0 has a memory leak in ThreadPool in IlmBase/IlmThread/IlmThreadPool.cpp, as demonstrated by exrmultiview.

Core 4

Core References

Exploit, Third Party Advisory x_refsource_misc

Release Notes x_refsource_confirm

Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora

Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora

CVSS v3 4.3

EPSS 0.0210

EPSS Percentile 79.2%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

CWE

CWE-772

Status published

Products (1)

ilm/openexr 2.3.0

Published Oct 17, 2018

Tracked Since Feb 18, 2026