Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ab09e961 by Salvatore Bonaccorso at 2026-04-02T15:32:11+02:00
Add two new openexr issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -118,9 +118,13 @@ CVE-2026-34560 (CI4MS is a CodeIgniter 4-based CMS
skeleton that delivers a prod
CVE-2026-34559 (CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a
production ...)
NOT-FOR-US: CI4MS
CVE-2026-34545 (OpenEXR provides the specification and reference
implementation of the ...)
- TODO: check
+ - openexr <unfixed>
+ NOTE:
https://github.com/AcademySoftwareFoundation/openexr/security/advisories/GHSA-ghfj-fx47-wg97
+ NOTE: Fixed by:
https://github.com/AcademySoftwareFoundation/openexr/commit/3827998f5c041d6a94c6af24bbb363daa669e4b3
(v3.4.7-rc)
CVE-2026-34544 (OpenEXR provides the specification and reference
implementation of the ...)
- TODO: check
+ - openexr <unfixed>
+ NOTE:
https://github.com/AcademySoftwareFoundation/openexr/security/advisories/GHSA-h762-rhv3-h25v
+ NOTE: Fixed by:
https://github.com/AcademySoftwareFoundation/openexr/commit/35e7aa35e22c1975606be86e859f31cc1fc598ee
(v3.4.8-rc)
CVE-2026-34543 (OpenEXR provides the specification and reference
implementation of the ...)
TODO: check
CVE-2026-34531 (Flask-HTTPAuth provides Basic, Digest and Token HTTP
authentication fo ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab09e9616d60e7f804780d341edf827aa9efdf51
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab09e9616d60e7f804780d341edf827aa9efdf51
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
