Lucene search
GoogleOSV:DSA-2629-1HistoryFeb 25, 2013 - 12:00 a.m.
openjpeg - several issues
2013-02-2500:00:00
Google
osv.dev
7
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.086 Low
EPSS
Percentile
93.6%
- CVE-2009-5030
Heap memory corruption leading to invalid free when processing certain
Gray16 TIFF images. - CVE-2012-3358
Huzaifa Sidhpurwala of the Red Hat Security Response Team found a
heap-based buffer overflow in JPEG2000 image parsing. - CVE-2012-3535
Huzaifa Sidhpurwala of the Red Hat Security Response Team found a
heap-based buffer overflow when decoding JPEG2000 images.
For the stable distribution (squeeze), these problems have been fixed in
version 1.3+dfsg-4+squeeze1.
For the testing (wheezy) and unstable (sid) distributions, these problems
have been fixed in version 1.3+dfsg-4.6.
We recommend that you upgrade your openjpeg packages.
| CPE | Name | Operator | Version |
|---|---|---|---|
| openjpeg | eq | 1.3+dfsg-4 |
References
Related
openvas
openvas
Debian Security Advisory DSA 2629-1 (openjpeg - several issues)
2013-02-25 00:00:00
Debian: Security Advisory (DSA-2629-1)
2013-02-24 00:00:00
Gentoo Security Advisory GLSA 201310-07
2015-09-29 00:00:00
nessus
nessus
GLSA-201310-07 : OpenJPEG: User-assisted execution of arbitrary code
2013-10-11 00:00:00
Mandriva Linux Security Advisory : openjpeg (MDVSA-2013:110)
2013-04-20 00:00:00
Debian DSA-2629-1 : openjpeg - several issues
2013-02-26 00:00:00
gentoo
gentoo
OpenJPEG: User-assisted execution of arbitrary code
2013-10-10 00:00:00
securityvulns
securityvulns
openjpeg library security vulnerabilities
2013-03-02 00:00:00
[ MDVSA-2012:104 ] openjpeg
2012-07-16 00:00:00
debian
debian
[SECURITY] [DSA 2629-1] openjpeg security update
2013-02-25 19:07:06
fedora
fedora
[SECURITY] Fedora 17 Update: openjpeg-1.4-15.fc17
2013-06-19 04:34:50
[SECURITY] Fedora 16 Update: openjpeg-1.4-14.fc16
2012-10-23 01:51:32
[SECURITY] Fedora 17 Update: openjpeg-1.4-14.fc17
2012-11-02 03:18:21
centos
centos
openjpeg security update
2012-07-11 20:43:18
openjpeg security update
2012-09-17 20:46:30
amazon
amazon
Important: openjpeg
2012-07-30 16:35:00
Important: openjpeg
2012-09-22 21:35:00
oraclelinux
oraclelinux
openjpeg security update
2012-07-11 00:00:00
openjpeg security update
2012-09-17 00:00:00
veracode
veracode
Denial Of Service (DoS) And Remote Code Execution (RCE)
2019-05-02 04:42:21
Denial Of Service (DoS)
2019-01-15 08:57:51
Denial Of Service (DoS)
2019-01-15 08:54:17
redhat
redhat
(RHSA-2012:1068) Important: openjpeg security update
2012-07-11 00:00:00
(RHSA-2012:1283) Important: openjpeg security update
2012-09-17 00:00:00
cve
cve
prion
prion
Memory corruption
2012-07-18 22:55:00
Heap overflow
2012-09-05 23:55:00
Heap overflow
2012-07-18 23:55:00
ubuntucve
ubuntucve
freebsd
freebsd
openjpeg -- Multiple vulnerabilities
2012-05-13 00:00:00
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.086 Low
EPSS
Percentile
93.6%
Related for OSV:DSA-2629-1