Overview Repositories Revisions Requests Users Attributes Meta
Security update for openexr

This update for openexr fixes the following issues:

- CVE-2020-15304: Fixed a NULL pointer dereference in TiledInputFile:TiledInputFile() (bsc#1173466).
- CVE-2020-15305: Fixed a use-after-free in DeepScanLineInputFile:DeepScanLineInputFile() (bsc#1173467).
- CVE-2020-15306: Fixed a heap buffer overflow in getChunkOffsetTableSize() (bsc#1173469).

This update was imported from the SUSE:SLE-15:Update update project.

Fixed bugs
CVE-2020-15305
CVE-2020-15304
CVE-2020-15306
bnc#1173467
VUL-0: CVE-2020-15305: OpenEXR,openexr: use-after-free in DeepScanLineInputFile:DeepScanLineInputFile()
bnc#1173469
VUL-0: CVE-2020-15306: OpenEXR,openexr: invalid chunkCount attributes could cause a heap buffer overflow in getChunkOffsetTableSize()
bnc#1173466
VUL-1: CVE-2020-15304: OpenEXR,openexr: NULL pointer dereference in TiledInputFile:TiledInputFile()
Selected Binaries
openSUSE Build Service is sponsored by
Places