We have tagged v2.4.8.1 as the latest production release and moved the "release" branch marker to that point. This is guaranteed to be API, ABI, and link back-compatible with prior 2.4 releases. Release notes are below.
This is just a bug fix patch release. If you haven't encountered these bugs and are operating in a secure environment, there isn't especially a rush to upgrade. But please note that it fixes three CVE's, so distros or users concerned about security issues should upgrade. Release 2.4.8.1 (13 Feb 2023) -- compared to 2.4.8.0 ----------------------------------------------------- * Fix(targa): guard against corrupted tga files Fixes TALOS-2023-1707 / CVE-2023-24473, TALOS-2023-1708 / CVE-2023-22845. #3768 * Fix: race condition in TIFF reader, fixes TALOS-2023-1709 / CVE-2023-24472. #3772 * Windows: Fix unresolved external symbol for MSVS 2017 #3763 * Fix: Initialize OpenEXROutput::m_levelmode() in init(). #3764 * Fix: improve thread safety for concurrent tiff loads. #3767 * Fix(fits): Make sure to close if open fails to find right magic number. #3771 -- Larry Gritz l...@larrygritz.com _______________________________________________ Oiio-dev mailing list Oiio-dev@lists.openimageio.org http://lists.openimageio.org/listinfo.cgi/oiio-dev-openimageio.org
