security/vuxml: add CVE #s for OpenEXR 2.5.4 fixes

author: Matthias Andree <mandree@FreeBSD.org> 2021-05-08 09:32:45 +0000
committer: Matthias Andree <mandree@FreeBSD.org> 2021-05-08 09:33:44 +0000
commit: 487828600d153ea9347fafb6338bf742e8fe8aeb (patch)
tree: 01711d0f582a3313d979340b2903dde33cbbbe31
parent: 970a21a2f2924c9b7bfacd5275651905ead4d660 (diff)
1 files changed, 9 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml
index 7f163ca321b3..8cd319925068 100644
--- a/security/vuxml/vuln.xml
+++ b/security/vuxml/vuln.xml
@@ -3410,6 +3410,15 @@ raptor_xml_writer_start_element_common.</p>
     </description>
     <references>
       <url>https://github.com/AcademySoftwareFoundation/openexr/releases/tag/v2.5.5</url>
+      <!-- updated 2021-05-08 from https://github.com/AcademySoftwareFoundation/openexr/commit/744cdecc87ff3489cc47204411d7903ceeb80be4 -->
+      <url>https://github.com/AcademySoftwareFoundation/openexr/releases/tag/v2.5.4</url>
+      <cvename>CVE-2021-20296</cvename>
+      <cvename>CVE-2021-3479</cvename>
+      <cvename>CVE-2021-3478</cvename>
+      <cvename>CVE-2021-3477</cvename>
+      <cvename>CVE-2021-3476</cvename>
+      <cvename>CVE-2021-3475</cvename>
+      <cvename>CVE-2021-3474</cvename>
     </references>
     <dates>
       <discovery>2021-02-12</discovery>
author	Matthias Andree <mandree@FreeBSD.org>	2021-05-08 09:32:45 +0000
committer	Matthias Andree <mandree@FreeBSD.org>	2021-05-08 09:33:44 +0000
commit	487828600d153ea9347fafb6338bf742e8fe8aeb (patch)
tree	01711d0f582a3313d979340b2903dde33cbbbe31
parent	970a21a2f2924c9b7bfacd5275651905ead4d660 (diff)