tinyexr commit 0647fb3 was discovered to contain a heap-buffer overflow via the component rleUncompress.

In tinyexr 1.0.1, there is a heap-based buffer over-read in tinyexr::DecodePixelData.

tinyexr commit 0.9.5 was discovered to contain an array index error in the tinyexr::SaveEXR component, which can lead to a denial of service (DOS).

tinyexr 0.9.5 was discovered to contain an array index error in the tinyexr::DecodeEXRImage component, which can lead to a denial of service (DOS).

tinyexr 0.9.5 has a integer overflow over-write in tinyexr::DecodePixelData in tinyexr.h, related to OpenEXR code.

An attempted excessive memory allocation was discovered in the function tinyexr::AllocateImage in tinyexr.h in tinyexr v0.9.5. Remote attackers could leverage this vulnerability to cause a denial-of-service via crafted input, which leads to an out-of-memory exception.

tinyexr 0.9.5 has an assertion failure in DecodePixelData in tinyexr.h.

tinyexr 0.9.5 has a segmentation fault in the wav2Decode function.

tinyexr 0.9.5 has a heap-based buffer over-read in LoadEXRImageFromMemory in tinyexr.h.

tinyexr 0.9.5 has an assertion failure in ComputeChannelLayout in tinyexr.h.