Bug#1027143: openimageio: CVE-2022-43592 CVE-2022-43593 CVE-2022-43594 CVE-2022-43595 CVE-2022-43596 CVE-2022-43597 CVE-2022-43598 CVE-2022-43599 CVE-2022-43600 CVE-2022-43601 CVE-2022-43602 CVE-2022-41639 CVE-2022-41649 CVE-2022-41684 CVE-2022-41794 CVE-2022-41837 CVE-2022-41838 CVE-2022-41977 CVE-2022-41981 CVE-2022-41988

[Bastian Germann]

On Sun, 22 Jan 2023 20:17:52 +0100 Bastian Germann <b...@debian.org> wrote:

Control: fixed -1 2.4.7.1+dfsg-1

According to https://github.com/OpenImageIO/oiio/blob/dev-2.4/CHANGES.md,
all the open CVEs are fixed with upstream version 2.4.6 or earlier.

Please note that the CHANGES.md docuemnt was edited after 2.4.7.1 to contain 
more CVE IDs.

Can you please mark the CVEs as fixed? Sorry that I have missed to include them 
in the changelog.