Vulnerability Manager Plus

SUSE-SU-2017:2649-1(SUSE Linux Enterprise Desktop 12-SP2 ) libopenjp2-7-2.1.0-4.6.1.x86_64.rpm

Risk Information

Base Score

8.8

MODERATE

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

0.913%

CVE Information

Source CVE
CVE-2017-14041

Associated CVE
CVE-2017-14041
CVE-2017-14039
CVE-2017-14040
CVE-2016-10507

Patch Details

No records found

References

http://www.debian.org/security/2017/dsa-4013
https://security.gentoo.org/glsa/201710-26
http://www.securityfocus.com/bid/100550
http://www.securityfocus.com/bid/100553
http://www.securityfocus.com/bid/100555
http://www.securityfocus.com/bid/100567
https://blogs.gentoo.org/ago/2017/08/28/openjpeg-heap-based-buffer-overflow-in-opj_t2_encode_packet-t2-c/
https://blogs.gentoo.org/ago/2017/08/28/openjpeg-invalid-memory-write-in-tgatoimage-convert-c/
https://blogs.gentoo.org/ago/2017/08/28/openjpeg-stack-based-buffer-overflow-write-in-pgxtoimage-convert-c/
https://github.com/uclouvain/openjpeg/commit/2cd30c2b06ce332dede81cccad8b334cde997281
https://github.com/uclouvain/openjpeg/commit/c535531f03369623b9b833ef41952c62257b507e
https://github.com/uclouvain/openjpeg/commit/da940424816e11d624362ce080bc026adffa26e8
https://github.com/uclouvain/openjpeg/commit/e5285319229a5d77bf316bb0d3a6cbd3cb8666d9
https://github.com/uclouvain/openjpeg/issues/833
https://github.com/uclouvain/openjpeg/issues/992
https://github.com/uclouvain/openjpeg/issues/995
https://github.com/uclouvain/openjpeg/issues/997