Project

General

Profile

Bug #9680

Bug #9678: openjpeg: Multiple vulnerabilities (CVE-2017-17480, CVE-2018-18088)

[3.8] openjpeg: Multiple vulnerabilities (CVE-2017-17480, CVE-2018-18088)

Added by Alicha CH 2 months ago. Updated about 2 months ago.

Status:
Closed
Priority:
Normal
Category:
Security
Target version:
Start date:
11/22/2018
Due date:
% Done:

100%

Estimated time:
Affected versions:
Security IDs:

Description

CVE-2018-18088: NULL pointer dereference in the imagetopnm function of jp2/convert.c

A flaw was found in OpenJPEG 2.3.0. A NULL pointer dereference for "red" in the
imagetopnm function of jp2/convert.c

References:

https://github.com/uclouvain/openjpeg/issues/1152
https://nvd.nist.gov/vuln/detail/CVE-2018-18088

Patch:

https://github.com/uclouvain/openjpeg/commit/cab352e249ed3372dd9355c85e837613fff98fa2

CVE-2017-17480: Stack-buffer overflow in the pgxtovolume function

In OpenJPEG 2.3.0, a stack-based buffer overflow was discovered in the pgxtovolume function in jp3d/convert.c. The vulnerability
causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution.

References:

https://github.com/uclouvain/openjpeg/issues/1044
https://security-tracker.debian.org/tracker/CVE-2017-17480

Patch:

https://github.com/uclouvain/openjpeg/commit/0bc90e4062a5f9258c91eca018c019b179066c62

Associated revisions

Revision 6dd49eef (diff)
Added by Natanael Copa 2 months ago

main/openjpeg: security fixes (CVE-2017-17480,CVE-2018-18088)

also remove unused patches

fixes #9680

History

#1 Updated by Natanael Copa 2 months ago

  • Status changed from New to Resolved
  • % Done changed from 0 to 100

#2 Updated by Alicha CH about 2 months ago

  • Project changed from Alpine Security to Alpine Linux
  • Category set to Security
  • Status changed from Resolved to Closed
  • Security IDs deleted (CVE-2017-17480, CVE-2018-18088)

Also available in: Atom PDF