Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2018:0619-1

Опубликовано: 06 мар. 2018
Источник: suse-cvrf

Описание

Security update for openexr

This update for openexr fixes the following issues:

  • CVE-2017-9110: In OpenEXR, an invalid read of size 2 in the hufDecode function in ImfHuf.cpp could cause the application to crash. (bsc#1040107)
  • CVE-2017-9114: In OpenEXR, an invalid read of size 1 in the refill function in ImfFastHuf.cpp could cause the application to crash. (bsc#1040114)
  • CVE-2017-12596: In OpenEXR, a crafted image causes a heap-based buffer over-read in the hufDecode function in IlmImf/ImfHuf.cpp during exrmaketiled execution; it could have resulted in denial of service or possibly unspecified other impact. (bsc#1052522)

This update was imported from the SUSE:SLE-12:Update update project.

Список пакетов

openSUSE Leap 42.3
libIlmImf-Imf_2_1-21-2.1.0-10.3.1
libIlmImf-Imf_2_1-21-32bit-2.1.0-10.3.1
openexr-2.1.0-10.3.1
openexr-devel-2.1.0-10.3.1
openexr-doc-2.1.0-10.3.1

Ссылки

Описание

In OpenEXR 2.2.0, a crafted image causes a heap-based buffer over-read in the hufDecode function in IlmImf/ImfHuf.cpp during exrmaketiled execution; it may result in denial of service or possibly unspecified other impact.

Затронутые продукты
openSUSE Leap 42.3:libIlmImf-Imf_2_1-21-2.1.0-10.3.1
openSUSE Leap 42.3:libIlmImf-Imf_2_1-21-32bit-2.1.0-10.3.1
openSUSE Leap 42.3:openexr-2.1.0-10.3.1
openSUSE Leap 42.3:openexr-devel-2.1.0-10.3.1
Ссылки

Описание

In OpenEXR 2.2.0, an invalid read of size 2 in the hufDecode function in ImfHuf.cpp could cause the application to crash.

Затронутые продукты
openSUSE Leap 42.3:libIlmImf-Imf_2_1-21-2.1.0-10.3.1
openSUSE Leap 42.3:libIlmImf-Imf_2_1-21-32bit-2.1.0-10.3.1
openSUSE Leap 42.3:openexr-2.1.0-10.3.1
openSUSE Leap 42.3:openexr-devel-2.1.0-10.3.1
Ссылки

Описание

In OpenEXR 2.2.0, an invalid read of size 1 in the refill function in ImfFastHuf.cpp could cause the application to crash.

Затронутые продукты
openSUSE Leap 42.3:libIlmImf-Imf_2_1-21-2.1.0-10.3.1
openSUSE Leap 42.3:libIlmImf-Imf_2_1-21-32bit-2.1.0-10.3.1
openSUSE Leap 42.3:openexr-2.1.0-10.3.1
openSUSE Leap 42.3:openexr-devel-2.1.0-10.3.1
Ссылки
Уязвимость openSUSE-SU-2018:0619-1