{"affected":[{"ecosystem_specific":{"binaries":[{"gegl":"0.4.16-3.3.1","gegl-0_4":"0.4.16-3.3.1","gegl-0_4-lang":"0.4.16-3.3.1","gegl-devel":"0.4.16-3.3.1","gegl-doc":"0.4.16-3.3.1","libgegl-0_4-0":"0.4.16-3.3.1","libgegl-0_4-0-32bit":"0.4.16-3.3.1","typelib-1_0-Gegl-0_4":"0.4.16-3.3.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.3","name":"gegl","purl":"pkg:rpm/opensuse/gegl&distro=openSUSE%20Leap%2015.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"0.4.16-3.3.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for gegl fixes the following issues:\n\n- CVE-2021-45463: fixed shell expansion via crafted pathname in the ImageMagick convert fallback (bsc#1194045).\n","id":"openSUSE-SU-2021:4209-1","modified":"2021-12-31T08:55:03Z","published":"2021-12-31T08:55:03Z","references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/G3NMUTGIH3QYFBHM25LC7HLI7HKVOYCU/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1194045"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-45463"}],"related":["CVE-2021-45463"],"summary":"Security update for gegl","upstream":["CVE-2021-45463"]}