CVE-2026-42450
HighCVSS 8.4Exploitation Probability (EPSS)
Low risk2th percentile — higher than 2% of all known CVEs
Summary
OpenColorIO prior to version 2.5.2 contains a vulnerability in FileFormatSpi3D.cpp where sscanf with %s format writes data into 64-byte stack buffers. Input comes from a 4096-byte lineBuffer, allowing a crafted .spi3d file to overflow by approximately 4000 bytes on non-Windows systems.
Risk Assessment
Stack buffer overflow can lead to memory corruption, application crashes, and potentially remote code execution. The risk affects systems processing untrusted .spi3d files, especially in production visual effects and animation environments.
Recommendation
Immediately update OpenColorIO to version 2.5.2 or later. If updating is not possible, restrict .spi3d file processing to trusted sources only.
Original NVD description (English source)
OpenColorIO is a color management framework for visual effects and animation. Prior to version 2.5.2, `FileFormatSpi3D.cpp:163` uses `sscanf` with `%s` into 64-byte stack buffers when parsing LUT data lines. Input comes from `lineBuffer[4096]`, so a crafted .spi3d file can overflow by ~4000 bytes on non-Windows. Version 2.5.2 fixes the issue.

