drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Mehrere Probleme in OpenEXR (Aktualisierung)
Name: |
Mehrere Probleme in OpenEXR (Aktualisierung) |
|
ID: |
USN-4996-2 |
|
Distribution: |
Ubuntu |
|
Plattformen: |
Ubuntu 16.04 ESM |
|
Datum: |
Di, 22. Juni 2021, 22:53 |
|
Referenzen: |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23215
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20296
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26260
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3598
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3605 |
|
Applikationen: |
OpenEXR |
|
Update von: |
Mehrere Probleme in OpenEXR |
|
Originalnachricht |
--===============9001270908457356018== Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="liOOAslEiF7prFVr" Content-Disposition: inline
--liOOAslEiF7prFVr Content-Type: text/plain; charset=us-ascii Content-Disposition: inline
========================================================================== Ubuntu Security Notice USN-4996-2 June 22, 2021
openexr vulnerabilities ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 16.04 ESM
Summary:
Several security issues were fixed in OpenEXR.
Software Description: - openexr: tools for the OpenEXR image format
Details:
USN-4996-1 fixed several vulnerabilities in OpenEXR. This update provides the corresponding update for Ubuntu 16.04 ESM.
Original advisory details:
It was discovered that OpenEXR incorrectly handled certain malformed EXR image files. If a user were tricked into opening a crafted EXR image file, a remote attacker could cause a denial of service, or possibly execute arbitrary code.
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 16.04 ESM: libopenexr22 2.2.0-10ubuntu2.6+esm1 openexr 2.2.0-10ubuntu2.6+esm1
In general, a standard system update will make all the necessary changes.
References: https://ubuntu.com/security/notices/USN-4996-2 https://ubuntu.com/security/notices/USN-4996-1 CVE-2021-20296, CVE-2021-23215, CVE-2021-26260, CVE-2021-3598, CVE-2021-3605
--liOOAslEiF7prFVr Content-Type: application/pgp-signature; name="signature.asc"
-----BEGIN PGP SIGNATURE-----
iQIzBAABCgAdFiEEf+ebRFcoyOoAQoOeRbznW4QLH2kFAmDR0UsACgkQRbznW4QL H2nAIA//crNBQUMBNm+tv+eRghYdjH3Npg3MEb6tbIhMtvFuVhsumZ20fMRnHYvx tBeq2iEomG0JlBuw5emMyFyEuIThfs9KPW3lw25J0i0UiekAxZkVZVL/rKTJPrp5 grmSqQom44hjTV/KzRU0v8wQLj3o2JyoPfbCVN9pW6aSMOpB8sRVdshPrjK2Yqzg nFFzGO+A4DLSxWdX1H6X/JXt70oWogFFxI+2qcomDO+C1LyFppeDTCniwouQBnBG Q0rF9DSZjkKlY8hnsrsugaB6KQotUCveS8UHSlvoMkytmCIzNlYAnZoWc96ucnnT xWy35Z93hghJOkrgF9DOcW56TRTXREi3Ivc8QXptcGG+88cT8FScXsdq2UQX0ntf y59ZyxIJgSwbM0w0hldnWP3qvjbDz+2aKXFdRHRQUGh50Dek2jSswCBSrSIj+wwW JuDqbrJSpdnkWKPcuf20D6vk8QqRoUd0k//c88xahSJxNRmjPuXpfBKgCX1Q98Xf cgVymvbWaxW2anFfEqvj6e2xggVBtBsG/iJVW0jH2il32eukNESqde0EBNzV6K+u qBbZ/saeuCiAj9IsQ0TRH1QRFDyUpyYI9XbYj79R+i2gbnB70xeYf9uwPoFIF0EJ DB8Rgkzk5n4wvhEgHnTpI32bw7NhdSqsG+cA7NL2FtW7UaFmbSM= =87Mj -----END PGP SIGNATURE-----
--liOOAslEiF7prFVr--
--===============9001270908457356018== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline
-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
|
|
|
|