[Pkg-phototools-devel] Bug#818399: Multiple security issues
Moritz Muehlenhoff
jmm at debian.org
Wed Mar 16 20:44:07 UTC 2016
Source: openjpeg2
Severity: grave
Tags: security
Hi,
multiple security issues were found in openjpeg2:
1. Out-Of-Bounds Read in sycc422_to_rgb function (CVE-2016-3183)
http://www.openwall.com/lists/oss-security/2016/03/14/14
https://github.com/uclouvain/openjpeg/issues/726
2. Heap Corruption in opj_free function (CVE-2016-3182)
http://www.openwall.com/lists/oss-security/2016/03/14/13
https://github.com/uclouvain/openjpeg/issues/725
3. Out-Of-Bounds Read in opj_tcd_free_tile function (CVE-2016-3181)
http://www.openwall.com/lists/oss-security/2016/03/14/12
https://github.com/uclouvain/openjpeg/issues/724
4. Out-of-bounds read in opj_j2k_update_image_data and opj_tgt_reset
function (CVE-2016-1923, CVE-2016-1924)
http://www.openwall.com/lists/oss-security/2016/01/18/4
https://github.com/uclouvain/openjpeg/issues/704
Cheers,
Moritz
More information about the Pkg-phototools-devel
mailing list