Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: a45a48fd by Salvatore Bonaccorso at 2024-04-25T08:29:31+02:00 Add upstream tag information on two openexr issues - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -216388,7 +216388,7 @@ CVE-2021-26945 (An integer overflow leading to a heap-buffer overflow was found NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31221 NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31228 NOTE: https://github.com/AcademySoftwareFoundation/openexr/pull/930 - NOTE: https://github.com/AcademySoftwareFoundation/openexr/commit/2f01a253db2bc82724405a16c76783c38c67ba05 + NOTE: https://github.com/AcademySoftwareFoundation/openexr/commit/2f01a253db2bc82724405a16c76783c38c67ba05 (v3.0.0-beta) NOTE: Only affects exrcheck, which isn't built into the binary packages CVE-2021-26260 (An integer overflow leading to a heap-buffer overflow was found in the ...) {DSA-5299-1 DLA-3236-1 DLA-2701-1} @@ -216396,7 +216396,7 @@ CVE-2021-26260 (An integer overflow leading to a heap-buffer overflow was found NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1947582 NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=29423 NOTE: https://github.com/AcademySoftwareFoundation/openexr/pull/894 - NOTE: https://github.com/AcademySoftwareFoundation/openexr/commit/088a61434568cedf3ac1521c44584be397909078 + NOTE: https://github.com/AcademySoftwareFoundation/openexr/commit/088a61434568cedf3ac1521c44584be397909078 (v3.0.0-beta) NOTE: https://github.com/AcademySoftwareFoundation/openexr/commit/4212416433a230334cef0ac122cb8d722746035d (2.5) CVE-2021-23215 (An integer overflow leading to a heap-buffer overflow was found in the ...) {DSA-5299-1 DLA-3236-1 DLA-2701-1} View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a45a48fd3133512067b3464467374d14f9164833 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a45a48fd3133512067b3464467374d14f9164833 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits