[CLSA-2026:1784118526] openexr: Fix of 2 CVEs
Type:
security
Severity:
Moderate
Release date:
2026-07-15 12:29:00 UTC
Description:
- CVE-2021-3933: integer overflow in Imf::bytesPerDeepLineTable (ImfMisc.cpp) - CVE-2021-45942: heap OOB write in CompositeDeepScanLine::setFrameBuffer via missing subsampling validation
Updated packages:
  • openexr-3.1.1-3.el9.tuxcare.els8.x86_64.rpm
    sha:95318c76c0d19221f4e6b3702453d943bb6d63783cfbddbf71b40d5e44c31666
  • openexr-devel-3.1.1-3.el9.tuxcare.els8.i686.rpm
    sha:a7147766c0c721e0abba51aca2668ac9df4950f20b9f09c21233bef75a026093
  • openexr-devel-3.1.1-3.el9.tuxcare.els8.x86_64.rpm
    sha:532f9d65cc3a6ccbb77ba5c1034e6be6d944276de2ef2a2ae0dccee493f8f667
  • openexr-libs-3.1.1-3.el9.tuxcare.els8.i686.rpm
    sha:f6cd70dc25fbc4e28c58dbdf9a3b495df9f5a89476d2905091038bd232c50000
  • openexr-libs-3.1.1-3.el9.tuxcare.els8.x86_64.rpm
    sha:4bae6738f3087c1d226e1ccb69ea4f4d69ba1e2e662a368543052804c46aded1
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.