Lucene search
SuseOPENSUSE-SU-2021:0536-1HistoryApr 11, 2021 - 12:00 a.m.
Security update for openexr (moderate)
2021-04-1100:00:00
lists.opensuse.org
15
openexr
security update
vulnerabilities
undefined-shift
integer-overflow
suse
EPSS
0.002
Percentile
52.7%
An update that fixes three vulnerabilities is now available.
Description:
This update for openexr fixes the following issues:
- CVE-2021-3474: Undefined-shift in
Imf_2_5::FastHufDecoder::FastHufDecoder (bsc#1184174) - CVE-2021-3475: Integer-overflow in Imf_2_5::calculateNumTiles
(bsc#1184173) - CVE-2021-3476: Undefined-shift in Imf_2_5::unpack14 (bsc#1184172)
This update was imported from the SUSE:SLE-15:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
-
openSUSE Leap 15.2:
zypper in -t patch openSUSE-2021-536=1
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 15.2 | i586 | < - openSUSE Leap 15.2 (i586 x86_64): | - openSUSE Leap 15.2 (i586 x86_64):.i586.rpm | |
| openSUSE Leap | 15.2 | x86_64 | < - openSUSE Leap 15.2 (i586 x86_64): | - openSUSE Leap 15.2 (i586 x86_64):.x86_64.rpm | |
| openSUSE Leap | 15.2 | x86_64 | < - openSUSE Leap 15.2 (x86_64): | - openSUSE Leap 15.2 (x86_64):.x86_64.rpm |
Related
openvas
openvas
openSUSE: Security Advisory for openexr (openSUSE-SU-2021:0536-1)
2021-04-16 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:1097-1)
2021-06-09 00:00:00
Ubuntu: Security Advisory (USN-4900-1)
2021-04-02 00:00:00
nessus
nessus
openSUSE Security Update : openexr (openSUSE-2021-536)
2021-04-12 00:00:00
SUSE SLED15 / SLES15 Security Update : openexr (SUSE-SU-2021:1097-1)
2021-04-08 00:00:00
EulerOS 2.0 SP3 : OpenEXR (EulerOS-SA-2022-1750)
2022-05-26 00:00:00
osv
osv
openexr vulnerabilities
2021-04-01 17:33:50
CVE-2021-3474
2021-03-30 18:15:17
CVE-2021-3476
2021-03-30 18:15:18
cloudfoundry
cloudfoundry
USN-4900-1: OpenEXR vulnerabilities | Cloud Foundry
2021-04-29 00:00:00
ubuntu
ubuntu
OpenEXR vulnerabilities
2021-04-01 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2247
2023-10-17 12:52:56
freebsd
freebsd
openexr, ilmbase -- security fixes related to reading corrupted input files
2021-02-12 00:00:00
redhatcve
redhatcve
ubuntucve
ubuntucve
cvelist
cvelist
alpinelinux
alpinelinux
nvd
nvd
prion
prion
Integer overflow
2021-03-30 18:15:00
Design/Logic Flaw
2021-03-30 18:15:00
Design/Logic Flaw
2021-03-30 18:15:00
debiancve
debiancve
veracode
veracode
Denial Of Service (DoS)
2021-04-05 07:36:07
Denial Of Service (DoS)
2021-04-05 07:36:11
Denial Of Service (DoS)
2021-04-05 07:36:10
cve
cve
debian
debian
[SECURITY] [DLA 2701-1] openexr security update
2021-07-03 18:16:01
[SECURITY] [DLA 3236-1] openexr security update
2022-12-11 23:52:53
mageia
mageia
Updated openexr packages fix security vulnerabilities
2021-07-10 15:56:54
gentoo
gentoo
OpenEXR: Multiple vulnerabilities
2021-07-11 00:00:00
amazon
amazon
Medium: OpenEXR
2023-06-05 16:39:00
suse
suse
Security update for openexr (important)
2021-08-20 00:00:00
Security update for openexr (important)
2021-08-26 00:00:00