Описание
Security update for openexr
This update for openexr fixes the following issues:
Security issues fixed:
- CVE-2017-9111: Fixed an invalid write of size 8 in the storeSSE function in ImfOptimizedPixelReading.h (bsc#1040109).
- CVE-2017-9113: Fixed an invalid write of size 1 in the bufferedReadPixels function in ImfInputFile.cpp (bsc#1040113).
- CVE-2017-9115: Fixed an invalid write of size 2 in the = operator function inhalf.h (bsc#1040115).
Список пакетов
Container containers/lmcache-vllm-openai:0
libIlmImf-2_2-23-2.2.1-3.6.1
Container containers/open-webui:0
libIlmImf-2_2-23-2.2.1-3.6.1
Container containers/vllm-openai:0
libIlmImf-2_2-23-2.2.1-3.6.1
Image ai_15_6
libIlmImf-2_2-23-2.2.1-3.6.1
SUSE Linux Enterprise Module for Desktop Applications 15
libIlmImf-2_2-23-2.2.1-3.6.1
libIlmImfUtil-2_2-23-2.2.1-3.6.1
openexr-devel-2.2.1-3.6.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
libIlmImf-2_2-23-2.2.1-3.6.1
libIlmImfUtil-2_2-23-2.2.1-3.6.1
openexr-devel-2.2.1-3.6.1
Ссылки
- Link for SUSE-SU-2019:1963-1
- E-Mail link for SUSE-SU-2019:1963-1
- SUSE Security Ratings
- SUSE Bug 1040109
- SUSE Bug 1040113
- SUSE Bug 1040115
- SUSE CVE CVE-2017-9111 page
- SUSE CVE CVE-2017-9113 page
- SUSE CVE CVE-2017-9115 page
Описание
In OpenEXR 2.2.0, an invalid write of size 8 in the storeSSE function in ImfOptimizedPixelReading.h could cause the application to crash or execute arbitrary code.
Затронутые продукты
Container containers/lmcache-vllm-openai:0:libIlmImf-2_2-23-2.2.1-3.6.1
Container containers/open-webui:0:libIlmImf-2_2-23-2.2.1-3.6.1
Container containers/vllm-openai:0:libIlmImf-2_2-23-2.2.1-3.6.1
Image ai_15_6:libIlmImf-2_2-23-2.2.1-3.6.1
Ссылки
- CVE-2017-9111
- SUSE Bug 1040109
Описание
In OpenEXR 2.2.0, an invalid write of size 1 in the bufferedReadPixels function in ImfInputFile.cpp could cause the application to crash or execute arbitrary code.
Затронутые продукты
Container containers/lmcache-vllm-openai:0:libIlmImf-2_2-23-2.2.1-3.6.1
Container containers/open-webui:0:libIlmImf-2_2-23-2.2.1-3.6.1
Container containers/vllm-openai:0:libIlmImf-2_2-23-2.2.1-3.6.1
Image ai_15_6:libIlmImf-2_2-23-2.2.1-3.6.1
Ссылки
- CVE-2017-9113
- SUSE Bug 1040113
Описание
In OpenEXR 2.2.0, an invalid write of size 2 in the = operator function in half.h could cause the application to crash or execute arbitrary code.
Затронутые продукты
Container containers/lmcache-vllm-openai:0:libIlmImf-2_2-23-2.2.1-3.6.1
Container containers/open-webui:0:libIlmImf-2_2-23-2.2.1-3.6.1
Container containers/vllm-openai:0:libIlmImf-2_2-23-2.2.1-3.6.1
Image ai_15_6:libIlmImf-2_2-23-2.2.1-3.6.1
Ссылки
- CVE-2017-9115
- SUSE Bug 1040115