decode_frame in libavcodec/exr.c in FFmpeg 4.3.1 has an out-of-bounds write because of errors in calculations of when to perform memset zero operations. CREATE(Triage):(User=admin) [CVE-2020-35965|https://nvd.nist.gov/vuln/detail/CVE-2020-35965]