Fedora 27: 2017-1acde12f36 Critical: Mingw-Openjpeg3 Buffer Overflow
fedora
January 1, 2017
This update fixes CVE-2016-9580 and CVE-2016-9581
Summary
MinGW Windows openjpeg2 library.
Update Information:
This update fixes CVE-2016-9580 and CVE-2016-9581. ---- This update adds a patch to fix CVE-2016-9573 and CVE-2016-9572.
Topics Covered
Change Log
References
[ 1 ] Bug #1405128 - CVE-2016-9580 openjpeg2: Integer overflow in tiftoimage causes heap buffer overflow
https://bugzilla.redhat.com/show_bug.cgi?id=1405128
[ 2 ] Bug #1405135 - CVE-2016-9581 openjpeg2: Infinite loop in tiftoimage resulting into heap buffer overflow in convert_32s_C1P1
https://bugzilla.redhat.com/show_bug.cgi?id=1405135
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade mingw-openjpeg2' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: mingw-openjpeg2
Product: Fedora 25
Version: 2.1.2
Release: 3.fc25
Summary: MinGW Windows openjpeg2 library
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!