|
Bugzilla – Full Text Bug Listing |
| Summary: | VUL-0: CVE-2020-21426: freeimage: Buffer Overflow vulnerability in function C_IStream:read in PluginEXR.cpp in FreeImage 3.18.0 allows remote attackers to run arbitrary code and cause other impacts via crafted image file. | ||
|---|---|---|---|
| Product: | [openSUSE] openSUSE Backports | Reporter: | Stoyan Manolov <stoyan.manolov> |
| Component: | Packages | Assignee: | Dominique Leuenberger <dleuenberger> |
| Status: | RESOLVED FIXED | QA Contact: | E-Mail List <packagehub-bugs> |
| Severity: | Normal | ||
| Priority: | P3 - Medium | CC: | cathy.hu, security-team |
| Version: | SLE-15-SP5 | ||
| Target Milestone: | --- | ||
| Hardware: | Other | ||
| OS: | Other | ||
| URL: | https://smash.suse.de/issue/375959/ | ||
| Whiteboard: | |||
| Found By: | Security Response Team | Services Priority: | |
| Business Priority: | Blocker: | --- | |
| Marketing QA Status: | --- | IT Deployment: | --- |
|
Description
Stoyan Manolov
2023-08-24 09:08:32 UTC
Tracking as Affected: OpenSUSE:Factory/freeimage openSUSE:Backports:SLE-15-SP4:Update/freeimage openSUSE:Backports:SLE-15-SP5:Update/freeimage Reassigning to a factory maintainer since the previous assignee is not available and this bug is opensuse-only Please feel free to assign to another appropriate person or let me know if we should assign it to someone else This is an autogenerated message for OBS integration: This bug (1214555) was mentioned in https://build.opensuse.org/request/show/1115869 Factory / freeimage (In reply to OBSbugzilla Bot from comment #3) > This is an autogenerated message for OBS integration: > This bug (1214555) was mentioned in > https://build.opensuse.org/request/show/1115869 Factory / freeimage Resolved |