Описание
Security update for openexr
This update for openexr fixes the following issues:
- CVE-2021-45942: Fixed heap-based buffer overflow in Imf_3_1:LineCompositeTask:execute. (bsc#1194333)
Список пакетов
SUSE Linux Enterprise Server 12 SP5
libIlmImf-Imf_2_1-21-2.1.0-6.45.1
openexr-2.1.0-6.45.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libIlmImf-Imf_2_1-21-2.1.0-6.45.1
openexr-2.1.0-6.45.1
SUSE Linux Enterprise Software Development Kit 12 SP5
openexr-devel-2.1.0-6.45.1
SUSE Linux Enterprise Workstation Extension 12 SP5
libIlmImf-Imf_2_1-21-32bit-2.1.0-6.45.1
Ссылки
- Link for SUSE-SU-2022:0061-1
- E-Mail link for SUSE-SU-2022:0061-1
- SUSE Security Ratings
- SUSE Bug 1194333
- SUSE CVE CVE-2021-45942 page
Описание
OpenEXR 3.1.x before 3.1.4 has a heap-based buffer overflow in Imf_3_1::LineCompositeTask::execute (called from IlmThread_3_1::NullThreadPoolProvider::addTask and IlmThread_3_1::ThreadPool::addGlobalTask). NOTE: db217f2 may be inapplicable.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP5:libIlmImf-Imf_2_1-21-2.1.0-6.45.1
SUSE Linux Enterprise Server 12 SP5:openexr-2.1.0-6.45.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5:libIlmImf-Imf_2_1-21-2.1.0-6.45.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5:openexr-2.1.0-6.45.1
Ссылки
- CVE-2021-45942
- SUSE Bug 1194333