MGASA-2021-0216 - Updated openjpeg2 packages fix a security vulnerability

Publication date: 21 May 2021
URL: https://advisories.mageia.org/MGASA-2021-0216.html
Type: security
Affected Mageia releases: 7, 8
CVE: CVE-2021-29338

There is a flaw in the opj2_compress program in openjpeg2. An attacker who is able to submit a large number of image files to be processed in a directory by opj2_compress, could trigger a heap out-of-bounds write due to an integer overflow, which is caused by the large number of image files. The greatest threat posed by this flaw is to confidentiality, integrity, and availability.

This flaw affects the opj2_compress utility but is not in the openjpeg2 library. Therefore, the attack vector is local to the opj2_compress utility and would require an attacker to convince a user to open a directory with an extremely large number of files using opj2_compress, or a script to be feeding such arbitrary, untrusted files to opj2_compress (CVE-2021-29338).

References:
- https://bugs.mageia.org/show_bug.cgi?id=28851
- https://github.com/uclouvain/openjpeg/commit/b4700bc09d55ac17ff6bef9b0a867f6de527be17.patch
- https://access.redhat.com/security/cve/CVE-2021-29338
- https://bugzilla.redhat.com/show_bug.cgi?id=1950101
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29338

SRPMS:
- 8/core/openjpeg2-2.4.0-1.1.mga8
- 8/core/mingw-openjpeg2-2.4.0-1.1.mga8
- 7/core/openjpeg2-2.4.0-1.1.mga7
- 7/core/mingw-openjpeg2-2.4.0-1.mga7