Stay Secure with the Latest Linux Advisories

security advisorymoderate threatheap overflow

Mageia: 2021-0216 Moderate: opj2_compress Heap Overflow Threat

There is a flaw in the opj2_compress program in openjpeg2. An attacker who is able to submit a large number of image files to be processed in a directory by opj2_compress, could trigger a heap out-of-bounds write due to an integer overflow, which is caused by the large number of image files. The greatest threat posed by this flaw is to confidentiality, integrity, and availability. This flaw affects the opj2_compress utility but is not in the openjpeg2 library. Therefore, the attack vector is local to the opj2_compress utility and would require an attacker to convince a user to open a directory with an extremely large number of files using opj2_compress, or a script to be feeding such arbitrary, untrusted files to opj2_compress (CVE-2021-29338). References: . MGASA-2021-0216 - Updated openjpeg2 packages fix a security vulnerability Publication date: 21 May 2021 URL: https://advisories.mageia.org/MGASA-2021-0216.html Type: security Affected Mageia releases: 7, 8 CVE: CVE-2021-29338 There is a flaw in the opj2_compress program in openjpeg2. An attacker who is able to submit a large number of image files to be processed in a directory by opj2_compress, could trigger a heap out-of-bounds write due to an integer overflow, which is caused by the large number of image files. The greatest threat posed by this flaw is to confidentiality, integrity, and availability. This flaw affects the opj2_compress utility but is not in the openjpeg2 library. Therefore, the attack vector is local to the opj2_compress utility and would require an attacker to convince a user to open a directory with an extremely large number of files using opj2_compress, or a script to be feeding such arbitrary, untrusted files to opj2_compress (CVE-2021-29338). References: - https://bugs.mageia.org/show_bug.cgi?id=28851 - https://github.com/uclouvain/openjpeg/commit/b4700bc09d55ac17ff6bef9b0a867f6de527be17.patch - https://access.redhat.com/security/cve/CVE-2021-29338 - https://bugzilla.redhat.com/show_bug.cgi?id=1950101 -https://www.cve.org/CVERecord?id=CVE-2021-29338 SRPMS: - 8/core/openjpeg2-2.4.0-1.1.mga8 - 8/core/mingw-openjpeg2-2.4.0-1.1.mga8 - 7/core/openjpeg2-2.4.0-1.1.mga7 - 7/core/mingw-openjpeg2-2.4.0-1.mga7 . Revised openjpeg2 versions address a vulnerability impacting confidentiality, integrity, and availability.. openjpeg2 update, mageia security, heap overflow fix. . LinuxSecurity.com Team

May 21, 2021 Mageia