Overview

File _patchinfo of Package patchinfo.21777

<patchinfo incident="21777">
  <issue tracker="cve" id="2021-3477"/>
  <issue tracker="cve" id="2021-3933"/>
  <issue tracker="cve" id="2021-3941"/>
  <issue tracker="bnc" id="1184353">VUL-0: CVE-2021-3477: openexr: Heap-buffer-overflow in Imf_2_5::DeepTiledInputFile::readPixelSampleCounts</issue>
  <issue tracker="bnc" id="1192556">VUL-0: CVE-2021-3941: openexr,OpenEXR: Divide-by-zero in Imf_3_1:RGBtoXYZ</issue>
  <issue tracker="bnc" id="1192498">VUL-0: CVE-2021-3933: OpenEXR,openexr: Integer-overflow in Imf_3_1:bytesPerDeepLineTable</issue>
  <packager>pgajdos</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for openexr</summary>
  <description>This update for openexr fixes the following issues:
    
- CVE-2021-3477: Fixed Heap-buffer-overflow in Imf_2_5::DeepTiledInputFile::readPixelSampleCounts (bsc#1184353).
- CVE-2021-3941: Fixed divide-by-zero in Imf_3_1:RGBtoXYZ (bsc#1192556).
- CVE-2021-3933: Fixed integer-overflow in Imf_3_1:bytesPerDeepLineTable (bsc#1192498).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places