[Git][security-tracker-team/security-tracker][master] CVE-2024-55194/openimageio neither got fixed with 2.5.18.0
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Feb 17 18:37:36 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
414f138a by Salvatore Bonaccorso at 2025-02-17T19:37:05+01:00
CVE-2024-55194/openimageio neither got fixed with 2.5.18.0
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6049,7 +6049,7 @@ CVE-2024-55195 (An allocation-size-too-big bug in the component /imagebuf.cpp of
NOTE: https://github.com/AcademySoftwareFoundation/OpenImageIO/issues/4553
NOTE: https://github.com/AcademySoftwareFoundation/OpenImageIO/commit/78927acce09bd4fd7d4d7dccf7b7d4eff4295fcf
CVE-2024-55194 (OpenImageIO v3.1.0.0dev was discovered to contain a heap overflow via ...)
- - openimageio 2.5.18.0+dfsg-1 (bug #1094410)
+ - openimageio <unfixed> (bug #1094410)
[bookworm] - openimageio <no-dsa> (Minor issue)
[bullseye] - openimageio <ignored> (Minor issue)
NOTE: https://github.com/AcademySoftwareFoundation/OpenImageIO/issues/4552
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/414f138a5f401f42a2405329c88d0a1ae17feb1b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/414f138a5f401f42a2405329c88d0a1ae17feb1b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250217/766adc12/attachment.htm>
More information about the debian-security-tracker-commits
mailing list