Header::readfrom in IlmImf/ImfHeader.cpp in OpenEXR 2.2.0 allows remote attackers to cause a denial of service (excessive memory allocation) via a crafted file that is accessed with the ImfOpenInputFile function in IlmImf/ImfCRgbaFile.cpp. Upstream issue: https://github.com/openexr/openexr/issues/248
Created OpenEXR tracking bugs for this issue: Affects: fedora-all [bug 1483882] Created mingw-OpenEXR tracking bugs for this issue: Affects: fedora-all [bug 1483881]