Stay Secure with the Latest Linux Advisories

security advisoryfedoracritical

Fedora 31: FEDORA-2020-ab8553f302 Critical: OpenJPEG2 Buffer Fix

This update fixes CVE-2020-6851.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2020-ab8553f302 2020-01-31 01:59:12.858047 --------------------------------------------------------------------------------Name : openjpeg2 Product : Fedora 31 Version : 2.3.1 Release : 4.fc31 URL : https://github.com/uclouvain/openjpeg Summary : C-Library for JPEG 2000 Description : The OpenJPEG library is an open-source JPEG 2000 library developed in order to promote the use of JPEG 2000. This package contains * JPEG 2000 codec compliant with the Part 1 of the standard (Class-1 Profile-1 compliance). * JP2 (JPEG 2000 standard Part 2 - Handling of JP2 boxes and extended multiple component transforms for multispectral and hyperspectral imagery) --------------------------------------------------------------------------------Update Information: This update fixes CVE-2020-6851. --------------------------------------------------------------------------------ChangeLog: * Fri Jan 17 2020 Sandro Mani - 2.3.1-4 - Backport patch for CVE 2020-6851 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2020-ab8553f302' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct:https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . The security notice FEDORA-2020-bc9532f380 pertains to CVE-2020-6852, providing a patch for the openjpeg library.. Fedora Update, OpenJPEG Library, JPEG 2000 Codec, Critical Security Patch. . Severity: Critical. LinuxSecurity.com Team

Jan 30, 2020 •Critical Fedora