Bug#1027143: openimageio: CVE-2022-43592 CVE-2022-43593 CVE-2022-43594 CVE-2022-43595 CVE-2022-43596 CVE-2022-43597 CVE-2022-43598 CVE-2022-43599 CVE-2022-43600 CVE-2022-43601 CVE-2022-43602 CVE-2022-41639 CVE-2022-41649 CVE-2022-41684 CVE-2022-41794 CVE-2022-41837 CVE-2022-41838 CVE-2022-41977 CVE-2022-41981 CVE-2022-41988
Bastian Germann
bage at debian.org
Fri Jan 27 20:05:45 GMT 2023
On Sun, 22 Jan 2023 20:17:52 +0100 Bastian Germann <bage at debian.org> wrote:
> Control: fixed -1 2.4.7.1+dfsg-1
>
> According to https://github.com/OpenImageIO/oiio/blob/dev-2.4/CHANGES.md,
> all the open CVEs are fixed with upstream version 2.4.6 or earlier.
>
> Please note that the CHANGES.md docuemnt was edited after 2.4.7.1 to contain more CVE IDs.
Can you please mark the CVEs as fixed? Sorry that I have missed to include them in the changelog.
More information about the Pkg-phototools-devel
mailing list