[SECURITY] [DLA 2491-1] openexr security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 2491-1] openexr security update
From: "Chris Lamb" <lamby@debian.org>
Date: Sun, 13 Dec 2020 10:30:23 -0500 (EST)
Message-id: <[🔎] 160787327214.3811696.10205459740465991271@tinycat.chris-lamb.co.uk>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-2491-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/                           Chris Lamb
December 13, 2020                             https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : openexr
Version        : 2.2.0-11+deb9u2
CVE IDs        : CVE-2020-16588 CVE-2020-16589

Two issues were discovered in openexr, a set of tools to manipulate
OpenEXR image files, often in the computer-graphics industry for
visual effects and animation.

For Debian 9 "Stretch", these problems has been fixed in version
2.2.0-11+deb9u2.

We recommend that you upgrade your openexr packages.

For the detailed security status of openexr please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/openexr

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-----BEGIN PGP SIGNATURE-----
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=n+Ar
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 2490-1] x11vnc security update
Next by Date: [SECURITY] [DLA 2492-1] openssl security update
Previous by thread: [SECURITY] [DLA 2490-1] x11vnc security update
Next by thread: [SECURITY] [DLA 2492-1] openssl security update
Index(es):
- Date
- Thread