An issue in Academy Software Foundation openexr v.3.2.3 and before allows a local malicious user to cause a denial of service (DoS) via the convert function of exrmultipart.cpp.