Oval Definition:oval:org.opensuse.security:def:74974
Revision Date:2020-12-01Version:1
Title:Security update for openexr (Moderate)
Description:

This update for openexr fixes the following issues:

- CVE-2020-15304: Fixed a NULL pointer dereference in TiledInputFile:TiledInputFile() (bsc#1173466). - CVE-2020-15305: Fixed a use-after-free in DeepScanLineInputFile:DeepScanLineInputFile() (bsc#1173467). - CVE-2020-15306: Fixed a heap buffer overflow in getChunkOffsetTableSize() (bsc#1173469).

This update was imported from the SUSE:SLE-15:Update update project.
Family:unixClass:patch
Status:Reference(s):1173466
1173467
1173469
1175530
CVE-2020-15304
CVE-2020-15305
CVE-2020-15306
CVE-2020-24368
openSUSE-SU-2020:0970-1
openSUSE-SU-2020:1674-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.2
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libIlmImf-2_2-23-2.2.1-lp151.4.12 is installed
  • OR libIlmImf-2_2-23-32bit-2.2.1-lp151.4.12 is installed
  • OR libIlmImfUtil-2_2-23-2.2.1-lp151.4.12 is installed
  • OR libIlmImfUtil-2_2-23-32bit-2.2.1-lp151.4.12 is installed
  • OR openexr-2.2.1-lp151.4.12 is installed
  • OR openexr-devel-2.2.1-lp151.4.12 is installed
  • OR openexr-doc-2.2.1-lp151.4.12 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • icingacli-2.7.4-12 is installed
  • OR icingaweb2-2.7.4-12 is installed
  • OR icingaweb2-common-2.7.4-12 is installed
  • OR icingaweb2-vendor-HTMLPurifier-2.7.4-12 is installed
  • OR icingaweb2-vendor-JShrink-2.7.4-12 is installed
  • OR icingaweb2-vendor-Parsedown-2.7.4-12 is installed
  • OR icingaweb2-vendor-dompdf-2.7.4-12 is installed
  • OR icingaweb2-vendor-lessphp-2.7.4-12 is installed
  • OR icingaweb2-vendor-zf1-2.7.4-12 is installed
  • OR php-Icinga-2.7.4-12 is installed
    • BACK