Oval Definition:oval:org.opensuse.security:def:67090
Revision Date:2021-05-04Version:1
Title:Security update for openexr (Important)
Description:

This update for openexr fixes the following issues:

- CVE-2021-23215: Fixed an integer-overflow in Imf_2_5:DwaCompressor:initializeBuffers (bsc#1185216). - CVE-2021-26260: Fixed an Integer-overflow in Imf_2_5:DwaCompressor:initializeBuffers (bsc#1185217). - CVE-2021-20296: Fixed a Null Pointer dereference in Imf_2_5:hufUncompress (bsc#1184355). - CVE-2021-3477: Fixed a Heap-buffer-overflow in Imf_2_5::DeepTiledInputFile::readPixelSampleCounts (bsc#1184353). - CVE-2021-3479: Fixed an Out-of-memory caused by allocation of a very large buffer (bsc#1184354).
Family:unixClass:patch
Status:Reference(s):1133035
1162432
1164090
1165738
1171578
1174075
1175821
1175957
1184353
1184354
1184355
1185216
1185217
CVE-2019-3902
CVE-2020-1726
CVE-2021-20296
CVE-2021-23215
CVE-2021-26260
CVE-2021-3477
CVE-2021-3479
SUSE-SU-2020:2731-1
Platform(s):SUSE Linux Enterprise Module for Containers 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • mercurial-4.5.2-3.9 is installed
  • OR mercurial-lang-4.5.2-3.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 15 SP2 is installed
  • AND Package Information
  • conmon-2.0.20-3.6 is installed
  • OR fuse-overlayfs-1.1.2-3.9 is installed
  • OR podman-2.0.6-4.25 is installed
  • OR podman-cni-config-2.0.6-4.25 is installed
    • BACK