OpenJPEG: Multiple vulnerabilities
Multiple vulnerabilities have been found in OpenJPEG, the worst of
which may allow remote attackers to execute arbitrary code.
openjpeg
2017-10-23
2017-10-23
602180
606618
628504
629372
629668
630120
remote
2.3.0
2.3.0
OpenJPEG is an open-source JPEG 2000 library.
Multiple vulnerabilities have been discovered in OpenJPEG. Please review
the references below for details.
A remote attacker, via a crafted BMP, PDF, or j2k document, could
execute arbitrary code, cause a Denial of Service condition, or have
other unspecified impacts.
There is no known workaround at this time.
All OpenJPEG users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=media-libs/openjpeg-2.3.0:2"
CVE-2016-10504
CVE-2016-10505
CVE-2016-10506
CVE-2016-10507
CVE-2016-1626
CVE-2016-1628
CVE-2016-9112
CVE-2016-9113
CVE-2016-9114
CVE-2016-9115
CVE-2016-9116
CVE-2016-9117
CVE-2016-9118
CVE-2016-9572
CVE-2016-9573
CVE-2016-9580
CVE-2016-9581
CVE-2017-12982
CVE-2017-14039
CVE-2017-14164
b-man
chrisadr