[Bug 1205021] VUL-0: CVE-2022-41838: OpenImageIO: crash when processing cubemap files and a cube face was not present

http://bugzilla.opensuse.org/show_bug.cgi?id=1205021 http://bugzilla.opensuse.org/show_bug.cgi?id=1205021#c2 --- Comment #2 from Carlos L�pez --- (In reply to Carlos L�pez from comment #0)

RLA: fix potential buffer overrun. (TALOS-2022-1629, CVE-2022-36354) #3624 TIFF: guard against corrupt files with buffer overflows. (TALOS-2022-1627, CVE-2022-41977) #3628 TIFF: guard against buffer overflow for certain CMYK files. (TALOS-2022-1633, CVE-2022-41639) (TALOS-2022-1643, CVE-2022-41988) #3632

Please ignore this, it is not relevant. The fix appeared in this changelog entry: https://github.com/OpenImageIO/oiio/releases/tag/v2.4.5.0 -- You are receiving this mail because: You are on the CC list for the bug.