40 matches found
Azure Linux 3.0 Security Update: openjpeg2 (CVE-2020-8112)
The version of openjpeg2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2020-8112 advisory. - opjt1clbldecodeprocessor in openjp2/t1.c in OpenJPEG 2.3.1 through 2020-01-28 has a heap-based buffer...
MiracleLinux 8 : openjpeg2-2.3.1-3.el8 (AXSA:2020-159:04)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-159:04 advisory. openjpeg: heap-based buffer overflow in pjt1clbldecodeprocessor in openjp2/t1.c CVE-2020-8112 Tenable has extracted the preceding description block directly...
Linux Distros Unpatched Vulnerability : CVE-2020-8112
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - opjt1clbldecodeprocessor in openjp2/t1.c in OpenJPEG 2.3.1 through 2020-01-28 has a heap-based buffer overflow in the qmfbid==1 case, a different issue than...
TencentOS Server 3: openjpeg2 (TSSA-2022:0096)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0096 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...
Alibaba Cloud Linux 3 : 0096: openjpeg2 (ALINUX3-SA-2022:0096)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2022:0096 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2020-6851: OpenJPEG through 2.3.1 has ...
CVE-2020-8112 affecting package openjpeg2 for versions less than 2.3.1-12
CVE-2020-8112 affecting package openjpeg2 for versions less than 2.3.1-12. A patched version of the package is available...
Oracle Linux 8 : openjpeg2 (ELSA-2020-0570)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-0570 advisory. 2.3.1-3 - Fix CVE-2020-8112 1801033 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has...
USN-5952-1: OpenJPEG vulnerabilities | Cloud Foundry
Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description Sebastian Poeplau discovered that OpenJPEG incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly u...
openSUSE: Security Advisory for openjpeg (SUSE-SU-2022:1296-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE: Security Advisory for openjpeg2 (SUSE-SU-2022:1252-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE: Security Advisory (SUSE-SU-2022:1252-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2022:1129-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2020-0074)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 4882-1] openjpeg2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4882-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 01, 2021 https://www.debian.org/security/faq -...
NewStart CGSL CORE 5.05 / MAIN 5.05 : openjpeg2 Multiple Vulnerabilities (NS-SA-2020-0099)
The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has openjpeg2 packages installed that are affected by multiple vulnerabilities: - OpenJPEG through 2.3.1 has a heap-based buffer overflow in opjt1clbldecodeprocessor in openjp2/t1.c because of lack of opjj2kupdateimagedimension...
Ubuntu: Security Advisory (USN-4497-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 16.04 LTS : OpenJPEG vulnerabilities (USN-4497-1)
The remote Ubuntu 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4497-1 advisory. It was discovered that OpenJPEG incorrectly handled certain image files. A remote attacker could possibly use this issue to cause a denial of service...
Debian: Security Advisory (DLA-2277-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-2277-1 : openjpeg2 security update
The following CVEs were reported against src:openjpeg2. CVE-2019-12973 In OpenJPEG 2.3.1, there is excessive iteration in the opjt1encodecblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file. This issue is similar to...
[SECURITY] [DLA 2277-1] openjpeg2 security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2277-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta July 11, 2020 https://wiki.debian.org/LTS - -----------------------------------------------------------------------...