Overview

File _patchinfo of Package patchinfo.20112

<patchinfo incident="20112">
  <issue tracker="cve" id="2021-3479"/>
  <issue tracker="cve" id="2021-3605"/>
  <issue tracker="cve" id="2021-3598"/>
  <issue tracker="bnc" id="1187395">VUL-0: CVE-2021-3605: openexr,OpenEXR: OpenEXR: Heap buffer overflow in the rleUncompress function</issue>
  <issue tracker="bnc" id="1184354">VUL-0: CVE-2021-3479: openexr: Out-of-memory caused by allocation of a very large buffer</issue>
  <issue tracker="bnc" id="1187310">VUL-0: CVE-2021-3598: OpenEXR,openexr: OpenEXR: Heap buffer overflow in Imf_3_1:CharPtrIO:readChars</issue>
  <packager>pgajdos</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for openexr</summary>
  <description>This update for openexr fixes the following issues:

- Fixed CVE-2021-3479 [bsc#1184354]: Out-of-memory caused by allocation of a very large buffer
- Fixed CVE-2021-3605 [bsc#1187395]: Heap buffer overflow in the rleUncompress function
- Fixed CVE-2021-3598 [bsc#1187310]: Heap buffer overflow in Imf_3_1:CharPtrIO:readChars
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places