SUSE-SU-2018:1364-1 -- SLES libopenjp, openjpeg2-debuginfo, openjpeg2-debugsource| ID: oval:org.secpod.oval:def:89043654 | Date: (C)2021-03-05 (M)2024-01-02 |
| Class: PATCH | Family: unix |
This update for openjpeg2 fixes the following security issues: - CVE-2015-1239: A double free vulnerability in the j2k_read_ppm_v3 function allowed remote attackers to cause a denial of service - CVE-2017-17479: A stack-based buffer overflow in the pgxtoimage function in jpwl/convert.c could crash the converter. - CVE-2017-17480: A stack-based buffer overflow in the pgxtovolume function in jp3d/convert.c could crash the converter
| Platform: |
| SUSE Linux Enterprise Server 12 SP3 |
| Product: |
| libopenjp |
| openjpeg2-debuginfo |
| openjpeg2-debugsource |
