19 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-14040
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An invalid write access was discovered in bin/jp2/convert.c in OpenJPEG 2.2.0, triggering a crash in the tgatoimage function. The vulnerability may lead to remo...
RHEL 7 : openjpeg (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openjpeg: Stack-buffer overflow in the pgxtoimage function CVE-2017-17479 - openjpeg: heap-based buffer...
RHEL 6 : openjpeg (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openjpeg: Stack-buffer overflow in the pgxtoimage function CVE-2017-17479 - openjpeg: heap-based buffer...
Mageia: Security Advisory (MGASA-2017-0481)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP2 : openjpeg (EulerOS-SA-2021-1336)
According to the versions of the openjpeg package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An invalid write access was discovered in bin/jp2/convert.c in OpenJPEG 2.2.0, triggering a crash in the tgatoimage function. The vulnerability...
EulerOS 2.0 SP5 : openjpeg (EulerOS-SA-2021-1220)
According to the versions of the openjpeg package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An invalid write access was discovered in bin/jp2/convert.c in OpenJPEG 2.2.0, triggering a crash in the tgatoimage function. The vulnerability...
Fedora 27 : openjpeg2 (2017-a5bb95b447)
This update fixes CVE-2017-12982, CVE-2017-14040, CVE-2017-14041 and two other security vulnerabilities. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as...
[SECURITY] [DSA 4013-1] openjpeg2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4013-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 31, 2017 https://www.debian.org/security/faq -...
Debian: Security Advisory (DSA-4013-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED12 / SLES12 Security Update : openjpeg2 (SUSE-SU-2017:2649-1)
This update for openjpeg2 fixes several issues. These security issues were fixed : - CVE-2016-10507: Integer overflow vulnerability in the bmp24toimage function allowed remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted bmp file bsc105642...
Fedora Update for mingw-openjpeg2 FEDORA-2017-43390e73b1
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for mingw-openjpeg2 FEDORA-2017-f7a73de98d
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for openjpeg2 FEDORA-2017-f285db3668
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 25 : mingw-openjpeg2 (2017-f7a73de98d)
This update fixes CVE-2017-14040, CVE-2017-14041 and two other security vulnerabilities. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...
Fedora 25 : openjpeg2 (2017-f285db3668)
This update fixes CVE-2017-14040, CVE-2017-14041 and two other security vulnerabilities. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...
Fedora 26 : mingw-openjpeg2 (2017-43390e73b1)
This update fixes CVE-2017-14040, CVE-2017-14041 and two other security vulnerabilities. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...
Fedora Update for openjpeg2 FEDORA-2017-5a3cd21cee
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 26 : openjpeg2 (2017-5a3cd21cee)
This update fixes CVE-2017-14040, CVE-2017-14041 and two other security vulnerabilities. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...
CVE-2017-14040
OpenJPEG 2.2.0 has an invalid memory write in bin/jp2/convert.c (tgatoimage), causing a crash in tgatoimage and potentially remote denial of service or other impact. This CVE is CVE-2017-14040. Connected advisories/documents consistently describe the affected component and crash/DoS potential; no...