Lucene search
SuseOPENSUSE-SU-2020:2349-1HistoryDec 27, 2020 - 12:00 a.m.
Security update for openexr (moderate)
2020-12-2700:00:00
lists.opensuse.org
16
EPSS
0.001
Percentile
44.8%
An update that fixes three vulnerabilities is now available.
Description:
This update for openexr fixes the following issues:
Security issues fixed:
- CVE-2020-16587: Fixed a heap-based buffer overflow in
chunkOffsetReconstruction in ImfMultiPartInputFile.cpp (bsc#1179879). - CVE-2020-16588: Fixed a null pointer deference in generatePreview
(bsc#1179879). - CVE-2020-16589: Fixed a heap-based buffer overflow in writeTileData in
ImfTiledOutputFile.cpp (bsc#1179879).
This update was imported from the SUSE:SLE-15:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
-
openSUSE Leap 15.1:
zypper in -t patch openSUSE-2020-2349=1
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 15.1 | i586 | < - openSUSE Leap 15.1 (i586 x86_64): | - openSUSE Leap 15.1 (i586 x86_64):.i586.rpm | |
| openSUSE Leap | 15.1 | x86_64 | < - openSUSE Leap 15.1 (i586 x86_64): | - openSUSE Leap 15.1 (i586 x86_64):.x86_64.rpm | |
| openSUSE Leap | 15.1 | x86_64 | < - openSUSE Leap 15.1 (x86_64): | - openSUSE Leap 15.1 (x86_64):.x86_64.rpm |
Related
nessus
nessus
SUSE SLED15 / SLES15 Security Update : openexr (SUSE-SU-2020:3934-1)
2020-12-28 00:00:00
openSUSE Security Update : openexr (openSUSE-2020-2349)
2021-01-25 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2020:3934-1)
2021-06-09 00:00:00
Ubuntu: Security Advisory (USN-4676-1)
2021-01-11 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:3931-1)
2021-04-19 00:00:00
osv
osv
openexr vulnerabilities
2021-01-05 13:26:15
openexr - security update
2020-12-13 00:00:00
CVE-2020-16589
2020-12-09 21:15:14
cloudfoundry
cloudfoundry
USN-4676-1: OpenEXR vulnerabilities | Cloud Foundry
2021-02-10 00:00:00
ubuntu
ubuntu
OpenEXR vulnerabilities
2021-01-05 00:00:00
suse
suse
Security update for openexr (moderate)
2020-12-28 00:00:00
debian
debian
[SECURITY] [DLA 2491-1] openexr security update
2020-12-13 15:30:23
[SECURITY] [DLA 3236-1] openexr security update
2022-12-11 23:52:53
[SECURITY] [DLA 2701-1] openexr security update
2021-07-03 18:16:01
mageia
mageia
Updated openexr packages fix security vulnerabilities
2021-01-10 22:46:12
veracode
veracode
Denial Of Service (DoS)
2020-12-14 07:34:16
Denial Of Service
2021-07-10 18:43:16
Denial Of Service (DoS)
2020-12-14 07:34:19
nvd
nvd
prion
prion
Design/Logic Flaw
2020-12-09 21:15:00
Heap overflow
2020-12-09 21:15:00
Null pointer dereference
2020-12-09 21:15:00
debiancve
debiancve
redhatcve
redhatcve
cve
cve
cvelist
cvelist
ubuntucve
ubuntucve
