On Sun, 22 Jan 2023 20:17:52 +0100 Bastian Germann wrote:
Control: fixed -1 2.4.7.1+dfsg-1
According to https://github.com/OpenImageIO/oiio/blob/dev-2.4/CHANGES.md,
all the open CVEs are fixed with upstream version 2.4.6 or earlier.
Please note that the CHANGES.md docuemnt was edited after
The direct reverse dependencies all build fine with 2.4.7.1+dfsg-1, so we can
ask for the transition.
I have uploaded the latest 2.3 release to unstable and the latest 2.4 release
to experimental (NEW).
I have not yet updated d/copyright, so that is a TODO for any unstable 2.4
version.
Transitions are not allowed anymore but if the reverse deps build fine with the experimental package I
Am 15.01.23 um 14:50 schrieb Matteo F. Vescovi:
Maybe free time to spend on Debian? ;-P
I have requested to join the Team (via Gitlab group as I found no other means)
to help you out.
Hi!
Il sab 14 gen 2023, 21:09 Bastian Germann ha scritto:
> X-Debbugs-Cc: m...@debian.org
>
> What is stopping this from being addresed?
>
Maybe free time to spend on Debian? ;-P
mfv
X-Debbugs-Cc: m...@debian.org
What is stopping this from being addresed? Importing the latest 2.3.x version
would fix at least some of the issues if 2.4 cannot be imported.
Am Wed, Dec 28, 2022 at 05:31:34PM +0100 schrieb Moritz Mühlenhoff:
> Source: openimageio
> X-Debbugs-CC: t...@security.debian.org
> Severity: grave
> Tags: security
>
> Hi,
>
> The following vulnerabilities were published for openimageio.
And two more:
CVE-2022-38143:
Source: openimageio
X-Debbugs-CC: t...@security.debian.org
Severity: grave
Tags: security
Hi,
The following vulnerabilities were published for openimageio.
CVE-2022-43592[0]:
| An information disclosure vulnerability exists in the
| DPXOutput::close() functionality of OpenImageIO Project
8 matches
Mail list logo