[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for openexr issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Apr 3 10:23:01 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
50a11012 by Salvatore Bonaccorso at 2026-04-03T11:22:16+02:00
Add Debian bug reference for openexr issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -741,15 +741,15 @@ CVE-2026-34560 (CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a prod
CVE-2026-34559 (CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production ...)
NOT-FOR-US: CI4MS
CVE-2026-34545 (OpenEXR provides the specification and reference implementation of the ...)
- - openexr <unfixed>
+ - openexr <unfixed> (bug #1132578)
NOTE: https://github.com/AcademySoftwareFoundation/openexr/security/advisories/GHSA-ghfj-fx47-wg97
NOTE: Fixed by: https://github.com/AcademySoftwareFoundation/openexr/commit/3827998f5c041d6a94c6af24bbb363daa669e4b3 (v3.4.7-rc)
CVE-2026-34544 (OpenEXR provides the specification and reference implementation of the ...)
- - openexr <unfixed>
+ - openexr <unfixed> (bug #1132579)
NOTE: https://github.com/AcademySoftwareFoundation/openexr/security/advisories/GHSA-h762-rhv3-h25v
NOTE: Fixed by: https://github.com/AcademySoftwareFoundation/openexr/commit/35e7aa35e22c1975606be86e859f31cc1fc598ee (v3.4.8-rc)
CVE-2026-34543 (OpenEXR provides the specification and reference implementation of the ...)
- - openexr <unfixed>
+ - openexr <unfixed> (bug #1132580)
NOTE: https://github.com/AcademySoftwareFoundation/openexr/security/advisories/GHSA-vc68-257w-m432
NOTE: Fixed by: https://github.com/AcademySoftwareFoundation/openexr/commit/5f6d0aaa9e43802917af7db90f181e88e083d3b8 (v3.4.8-rc)
CVE-2026-34531 (Flask-HTTPAuth provides Basic, Digest and Token HTTP authentication fo ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/50a11012846bc511005f4cd14860ca5ccb81b90c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/50a11012846bc511005f4cd14860ca5ccb81b90c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260403/bea19fb9/attachment.htm>
More information about the debian-security-tracker-commits
mailing list