FEDORA-2020-a9a0f8f6cd — security update for mingw-OpenEXR

stable

mingw-OpenEXR-2.4.1-2.fc32

FEDORA-2020-a9a0f8f6cd created by smani 4 years ago for Fedora 32

Backport patches for CVE-2020-15306, CVE-2020-15305, CVE-2020-15304

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2020-a9a0f8f6cd

This update has been submitted for testing by smani.

4 years ago

This update's test gating status has been changed to 'ignored'.

4 years ago

This update's test gating status has been changed to 'waiting'.

4 years ago

This update's test gating status has been changed to 'ignored'.

4 years ago

This update has been pushed to testing.

4 years ago

This update can be pushed to stable now if the maintainer wishes

4 years ago

This update has been submitted for stable by bodhi.

4 years ago

This update has been pushed to stable.

4 years ago

Please login to add feedback.

Metadata

Type

security

Severity

medium

Karma

Signed

Content Type

RPM

Test Gating

ignored

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

7 days

Dates

submitted

4 years ago

in testing

4 years ago

in stable

4 years ago

Builds

mingw-OpenEXR-2.4.1-2.fc32

BZ#1852007 CVE-2020-15306 mingw-OpenEXR: OpenEXR: Invalid chunkCount attributes could cause a heap buffer overflow in getChunkOffsetTableSize() in IlmImf/ImfMisc.cpp [fedora-all]

BZ#1852013 CVE-2020-15305 mingw-OpenEXR: OpenEXR: Invalid input could cause a use-after-free in DeepScanLineInputFile::DeepScanLineInputFile() in IlmImf/ImfDeepScanLineInputFile.cpp [fedora-all]

BZ#1852017 CVE-2020-15304 mingw-OpenEXR: OpenEXR: An invalid tiled input file could cause invalid memory access in TiledInputFile::TiledInputFile() in IlmImf/ImfTiledInputFile.cpp [fedora-all]

mingw-OpenEXR-2.4.1-2.fc32

Automated Test Results

ignored