Oval Definition:oval:org.opensuse.security:def:70277
Revision Date:2021-08-20Version:1
Title:Security update for openexr (Important)
Description:

This update for openexr fixes the following issues:

- CVE-2021-20298 [bsc#1188460]: Fixed Out-of-memory in B44Compressor - CVE-2021-20299 [bsc#1188459]: Fixed Null-dereference READ in Imf_2_5:Header:operator - CVE-2021-20300 [bsc#1188458]: Fixed Integer-overflow in Imf_2_5:hufUncompress - CVE-2021-20302 [bsc#1188462]: Fixed Floating-point-exception in Imf_2_5:precalculateTileInfot - CVE-2021-20303 [bsc#1188457]: Fixed Heap-buffer-overflow in Imf_2_5::copyIntoFrameBuffer - CVE-2021-20304 [bsc#1188461]: Fixed Undefined-shift in Imf_2_5:hufDecode
Family:unixClass:patch
Status:Reference(s):1174154
1188457
1188458
1188459
1188460
1188461
1188462
CVE-2015-1419
CVE-2020-15719
CVE-2021-20298
CVE-2021-20299
CVE-2021-20300
CVE-2021-20302
CVE-2021-20303
CVE-2021-20304
CVE-2021-3476
SUSE-SU-2020:2581-1
SUSE-SU-2021:2793-1
Platform(s):SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • libldap-2_4-2-2.4.46-9.34 is installed
  • OR libldap-2_4-2-32bit-2.4.46-9.34 is installed
  • OR libldap-data-2.4.46-9.34 is installed
  • OR openldap2-2.4.46-9.34 is installed
  • OR openldap2-client-2.4.46-9.34 is installed
  • OR openldap2-devel-2.4.46-9.34 is installed
  • OR openldap2-devel-static-2.4.46-9.34 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND vsftpd-3.0.3-7.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • libIlmImf-2_2-23-2.2.1-3.35.1 is installed
  • OR libIlmImfUtil-2_2-23-2.2.1-3.35.1 is installed
  • OR openexr-devel-2.2.1-3.35.1 is installed
    • BACK