5 matches found
Linux Distros Unpatched Vulnerability : CVE-2016-10507
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow vulnerability in the bmp24toimage function in convertbmp.c in OpenJPEG before 2.2.0 allows remote attackers to cause a denial of service...
RHEL 6 : openjpeg (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openjpeg: Stack-buffer overflow in the pgxtoimage function CVE-2017-17479 - openjpeg: heap-based buffer...
RHEL 7 : openjpeg (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openjpeg: Stack-buffer overflow in the pgxtoimage function CVE-2017-17479 - openjpeg: heap-based buffer...
SUSE SLED12 / SLES12 Security Update : openjpeg2 (SUSE-SU-2017:2649-1)
This update for openjpeg2 fixes several issues. These security issues were fixed : - CVE-2016-10507: Integer overflow vulnerability in the bmp24toimage function allowed remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted bmp file bsc105642...
CVE-2016-10507
OpenJPEG contains an integer overflow in the bmp24toimage function (convertbmp.c) that affects OpenJPEG up to version 2.2.0. Exploitation of a crafted BMP file can cause a heap-based buffer over-read and a crash, i.e., a denial of service. The available connected documents indicate that fixes exi...