Описание
ELSA-2017-0838: openjpeg security update (MODERATE)
[1.5.1-16]
- Revert previous changes in patch for CVE-2016-5159
- Fix memory leaks Related: #1419772
[1.5.1-15]
- Add two more allocation checks to patch for CVE-2016-5159 Related: #1419772
[1.5.1-14]
- Fix CWE-825 errors in patch for CVE-2016-5158 Related: #1419772
[1.5.1-13]
- Add patches for CVE-2016-5139, CVE-2016-5158, CVE-2016-5159 Related: #1419772
[1.5.1-12]
- Fix patch name: CVE-2016-9675 => CVE-2016-7163 Related: #1419772
[1.5.1-11]
- Fix decoding of chroma-subsampled images
- Add patches for CVE-2016-9573 and CVE-2016-9675
- Fix Coverity issues Resolves: #1419772
Обновленные пакеты
Oracle Linux 7
Oracle Linux x86_64
openjpeg
1.5.1-16.el7_3
openjpeg-devel
1.5.1-16.el7_3
openjpeg-libs
1.5.1-16.el7_3
Ссылки на источники
Связанные уязвимости
openjpeg: A heap-based buffer overflow flaw was found in the patch for CVE-2013-6045. A crafted j2k image could cause the application to crash, or potentially execute arbitrary code.
openjpeg: A heap-based buffer overflow flaw was found in the patch for CVE-2013-6045. A crafted j2k image could cause the application to crash, or potentially execute arbitrary code.
openjpeg: A heap-based buffer overflow flaw was found in the patch for CVE-2013-6045. A crafted j2k image could cause the application to crash, or potentially execute arbitrary code.
openjpeg: A heap-based buffer overflow flaw was found in the patch for ...