Bug 14148

Summary: [CVE 21] OpenImageIO CVEs
Product: [ROSA-based products] ROSA Fresh Reporter: Vladimir Potapov <v.potapov>
Component: Preinstalled software in the ISOAssignee: ROSA Linux Bugs <bugs>
Status: VERIFIED FIXED QA Contact: ROSA Linux Bugs <bugs>
Severity: critical    
Priority: Highest CC: a.proklov, pastordidi
Version: AllFlags: v.potapov: qa_verified+
v.potapov: secteam_verified?
a.proklov: published+
Target Milestone: ---   
Hardware: All   
OS: Linux   
URL: CVE-2023-36183
Whiteboard:
Platform: --- ROSA Vulnerability identifier:
RPM Package: ISO-related:
Bad POT generating: Upstream:

Description Vladimir Potapov 2023-12-11 11:34:39 MSK 
https://nvd.nist.gov/vuln/detail/CVE-2023-36183 HIGH!
Comment 1 Aleksandr Proklov 2023-12-12 04:35:24 MSK 
уязвимость закрыта патчем

OpenImageIO	2.2.20.0-6

https://abf.io/build_lists/4885480
https://abf.io/build_lists/4885481 х64
https://abf.io/build_lists/4885482
Comment 2 Dmitry Postnikov 2023-12-12 19:44:28 MSK 
*****************************
Обновление отослано в Тестинг
Comment 3 Vladimir Potapov 2023-12-14 16:56:36 MSK 
OpenImageIO-2.2.20.0-6
https://abf.io/build_lists/4885480
https://abf.io/build_lists/4885481 х64
https://abf.io/build_lists/4885482
**************************** Advisory **********************
CVE closed by patch
************************************************************
QA Verified