Lucene search
SuseOPENSUSE-SU-2021:1198-1HistoryAug 26, 2021 - 12:00 a.m.
Security update for openexr (important)
2021-08-2600:00:00
lists.opensuse.org
47
openexr
security update
vulnerabilities
suse
patch
installation methods
EPSS
0.002
Percentile
61.9%
An update that fixes 7 vulnerabilities is now available.
Description:
This update for openexr fixes the following issues:
- CVE-2021-20298 [bsc#1188460]: Fixed Out-of-memory in B44Compressor
- CVE-2021-20299 [bsc#1188459]: Fixed Null-dereference READ in
Imf_2_5:Header:operator - CVE-2021-20300 [bsc#1188458]: Fixed Integer-overflow in
Imf_2_5:hufUncompress - CVE-2021-20302 [bsc#1188462]: Fixed Floating-point-exception in
Imf_2_5:precalculateTileInfot - CVE-2021-20303 [bsc#1188457]: Fixed Heap-buffer-overflow in
Imf_2_5::copyIntoFrameBuffer - CVE-2021-20304 [bsc#1188461]: Fixed Undefined-shift in Imf_2_5:hufDecode
This update was imported from the SUSE:SLE-15:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
-
openSUSE Leap 15.2:
zypper in -t patch openSUSE-2021-1198=1
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 15.2 | i586 | < - openSUSE Leap 15.2 (i586 x86_64): | - openSUSE Leap 15.2 (i586 x86_64):.i586.rpm | |
| openSUSE Leap | 15.2 | x86_64 | < - openSUSE Leap 15.2 (i586 x86_64): | - openSUSE Leap 15.2 (i586 x86_64):.x86_64.rpm | |
| openSUSE Leap | 15.2 | x86_64 | < - openSUSE Leap 15.2 (x86_64): | - openSUSE Leap 15.2 (x86_64):.x86_64.rpm |
Related
openvas
openvas
openSUSE: Security Advisory for openexr (openSUSE-SU-2021:2793-1)
2021-08-21 00:00:00
openSUSE: Security Advisory for openexr (openSUSE-SU-2021:1198-1)
2021-08-26 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:2793-1)
2021-08-20 00:00:00
nessus
nessus
openSUSE 15 Security Update : openexr (openSUSE-SU-2021:2793-1)
2021-08-21 00:00:00
openSUSE 15 Security Update : openexr (openSUSE-SU-2021:1198-1)
2021-08-26 00:00:00
SUSE SLED12 / SLES12 Security Update : openexr (SUSE-SU-2021:2913-1)
2021-09-04 00:00:00
suse
suse
Security update for openexr (important)
2021-08-20 00:00:00
Security update for openexr (moderate)
2021-04-11 00:00:00
debian
debian
[SECURITY] [DLA 2732-1] openexr security update
2021-08-04 19:53:02
[SECURITY] [DLA 3236-1] openexr security update
2022-12-11 23:52:53
[SECURITY] [DLA 2701-1] openexr security update
2021-07-03 18:16:01
osv
osv
openexr - security update
2021-08-04 00:00:00
CVE-2021-20299
2022-03-16 15:15:10
CVE-2021-20300
2022-03-04 18:15:00
amazon
amazon
Medium: OpenEXR
2023-06-05 16:39:00
nvd
nvd
debiancve
debiancve
redhatcve
redhatcve
prion
prion
Integer overflow
2022-03-04 18:15:00
Design/Logic Flaw
2022-08-23 16:15:00
Design/Logic Flaw
2022-03-04 18:15:00
veracode
veracode
Denial Of Service (DoS)
2021-07-17 14:11:16
Denial Of Service
2021-07-17 14:11:15
Denial Of Service (DoS)
2021-07-19 20:20:31
cve
cve
cvelist
cvelist
ubuntucve
ubuntucve
cnvd
cnvd
alpinelinux
alpinelinux
CVE-2021-3476
2021-03-30 18:15:18
ubuntu
ubuntu
OpenEXR vulnerabilities
2021-04-01 00:00:00
gentoo
gentoo
OpenEXR: Multiple Vulnerabilities
2022-10-31 00:00:00
OpenEXR: Multiple vulnerabilities
2021-07-11 00:00:00
cloudfoundry
cloudfoundry
USN-4900-1: OpenEXR vulnerabilities | Cloud Foundry
2021-04-29 00:00:00
freebsd
freebsd
openexr, ilmbase -- security fixes related to reading corrupted input files
2021-02-12 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2247
2023-10-17 12:52:56
mageia
mageia
Updated openexr packages fix security vulnerabilities
2021-07-10 15:56:54