Opened 2 years ago
Closed 2 years ago
#16102 closed enhancement (fixed)
exempi-2.6.1
| Reported by: | Bruce Dubbs | Owned by: | Douglas R. Reno |
|---|---|---|---|
| Priority: | high | Milestone: | 11.1 |
| Component: | BOOK | Version: | git |
| Severity: | normal | Keywords: | |
| Cc: |
Description
New minor version.
Change History (4)
comment:1 by , 2 years ago
comment:2 by , 2 years ago
| Priority: | normal → high |
|---|
I had to go hunting for these, but it appears that it's inside of the Adobe XMP Toolkit SDK itself.
First one is v2021.08 (https://helpx.adobe.com/security/products/xmpcore/apsb21-85.html)
CVE-2021-40716 CVE-2021-40732
Next up is v2021.07 (https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html)
CVE-2021-36045 CVE-2021-36046 CVE-2021-36052 CVE-2021-36047 CVE-2021-36048 CVE-2021-36050 CVE-2021-36051 CVE-2021-39847 CVE-2021-36053 CVE-2021-36054 CVE-2021-36055 CVE-2021-36056 CVE-2021-36057 CVE-2021-36064 CVE-2021-36058
Marking as HIGH because of the amount of Critical CVEs mentioned
comment:3 by , 2 years ago
| Owner: | changed from to |
|---|---|
| Status: | new → assigned |
comment:4 by , 2 years ago
| Resolution: | → fixed |
|---|---|
| Status: | assigned → closed |
Note:
See TracTickets
for help on using tickets.
2.6.1 - - Bug #26: Addressed missing README.md and others from tarball. https://gitlab.freedesktop.org/libopenraw/exempi/-/issues/26 2.6.0 - 2022/02/13 - Update XMPCore to Adobe XMP SDK v2021.10 (issue https://gitlab.freedesktop.org/libopenraw/exempi/-/issues/22) - Changes in v2021.10 - Fixing CTECHXMP-4170583, CTECHXMP-4170596, CTECHXMP-4170597, CTECHXMP-4170598, CTECHXMP-4170599, CTECHXMP-4170632 and CTECHXMP-4170633 (maintainer note: no idea what they are, but it seems to fix various buffer size issues in WAVE and SVG) - Changes in v2021.08 - Security Fixes - Fixes syntax errors like semicolons in the codebase - Copyright note changes across the codebase - Fixes broken license link in Read.md - Fully implements kXMPFiles_OpenOnlyXMP flag for MPEG4 - Changes in v2021.07 - Security Fixes - Write Exif 2.3.1 Time Zone Metadata - XMPFiles Should Read/Write - Removal of words Master/Slave/Blacklist/Whitelist from codebase - cmake scripts use --version instead of -dumpversion to get complete gcc version string - Updating ReadMe.txt - Changes in v2020.1 - iOS project generation issue - iOS compilation issue with libc++ - Android support with cmake version 3.6 - CMake upgrade to version 3.15 (except for android) - Add XCode 10.2 support - Add VS2017 support - Some fixes previously done in Exempi are now upstream.It mentions "security fixes", but no CVE number is given.