Bugs fixes in "openjpeg2"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2020-27842 | There's a flaw in openjpeg's t2 encoder in versions prior to 2.4.0. An attacker who is able to provide crafted input to be processed by openjpeg coul | 2021-01-07 |
| CVE | CVE-2020-27841 | There's a flaw in openjpeg in versions prior to 2.4.0 in src/lib/openjp2/pi.c. When an attacker is able to provide crafted input to be processed by t | 2021-01-07 |
| CVE | CVE-2020-27824 | global-buffer-overflow read in lib-openjp2 | 2021-01-07 |
| CVE | CVE-2020-27823 | Heap-buffer-overflow write in lib-openjp2 | 2021-01-07 |
| CVE | CVE-2020-15389 | jp2/opj_decompress.c in OpenJPEG through 2.3.1 has a use-after-free that can be triggered if there is a mix of valid and invalid files in a directory | 2021-01-07 |
| CVE | CVE-2020-27845 | There's a flaw in src/lib/openjp2/pi.c of openjpeg in versions prior to 2.4.0. If an attacker is able to provide untrusted input to openjpeg's conver | 2021-01-07 |
| CVE | CVE-2020-27843 | A flaw was found in OpenJPEG in versions prior to 2.4.0. This flaw allows an attacker to provide specially crafted input to the conversion or encodin | 2021-01-07 |
| CVE | CVE-2020-27842 | There's a flaw in openjpeg's t2 encoder in versions prior to 2.4.0. An attacker who is able to provide crafted input to be processed by openjpeg coul | 2021-01-07 |
| CVE | CVE-2020-27841 | There's a flaw in openjpeg in versions prior to 2.4.0 in src/lib/openjp2/pi.c. When an attacker is able to provide crafted input to be processed by t | 2021-01-07 |
| CVE | CVE-2020-27824 | global-buffer-overflow read in lib-openjp2 | 2021-01-07 |
| CVE | CVE-2020-27823 | Heap-buffer-overflow write in lib-openjp2 | 2021-01-07 |
| CVE | CVE-2020-15389 | jp2/opj_decompress.c in OpenJPEG through 2.3.1 has a use-after-free that can be triggered if there is a mix of valid and invalid files in a directory | 2021-01-07 |
| CVE | CVE-2016-7163 | Integer overflow in the opj_pi_create_decode function in pi.c in OpenJPEG allows remote attackers to execute arbitrary code via a crafted JP2 file, w | 2016-10-14 |
| Launchpad | 1630702 | Fix for CVE-2016-8332 and CVE-2016-7163 | 2016-10-14 |
| CVE | CVE-2016-7163 | Integer overflow in the opj_pi_create_decode function in pi.c in OpenJPEG allows remote attackers to execute arbitrary code via a crafted JP2 file, w | 2016-10-14 |
| Launchpad | 1630702 | Fix for CVE-2016-8332 and CVE-2016-7163 | 2016-10-14 |
About
-
Send Feedback to @ubuntu_updates
