Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2017:0559
HistoryMar 19, 2017 - 11:39 p.m.

(RHSA-2017:0559) Moderate: openjpeg security update

2017-03-1923:39:06
access.redhat.com
34

0.171 Low

EPSS

Percentile

96.1%

JSON

OpenJPEG is an open source library for reading and writing image files in JPEG2000 format.

Security Fix(es):

  • Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in OpenJPEG. A specially crafted JPEG2000 image could cause an application using OpenJPEG to crash or, potentially, execute arbitrary code. (CVE-2016-5139, CVE-2016-5158, CVE-2016-5159, CVE-2016-7163)

  • A vulnerability was found in the patch for CVE-2013-6045 for OpenJPEG. A specially crafted JPEG2000 image, when read by an application using OpenJPEG, could cause heap-based buffer overflows leading to a crash or, potentially, arbitrary code execution. (CVE-2016-9675)

The CVE-2016-9675 issue was discovered by Doran Moppert (Red Hat Product Security).

OSVersionArchitecturePackageVersionFilename
RedHat6i686openjpeg-debuginfo< 1.3-16.el6_8openjpeg-debuginfo-1.3-16.el6_8.i686.rpm
RedHat6s390openjpeg-devel< 1.3-16.el6_8openjpeg-devel-1.3-16.el6_8.s390.rpm
RedHat6ppc64openjpeg-devel< 1.3-16.el6_8openjpeg-devel-1.3-16.el6_8.ppc64.rpm
RedHat6s390xopenjpeg-devel< 1.3-16.el6_8openjpeg-devel-1.3-16.el6_8.s390x.rpm
RedHat6ppc64openjpeg-debuginfo< 1.3-16.el6_8openjpeg-debuginfo-1.3-16.el6_8.ppc64.rpm
RedHat6x86_64openjpeg< 1.3-16.el6_8openjpeg-1.3-16.el6_8.x86_64.rpm
RedHat6ppc64openjpeg< 1.3-16.el6_8openjpeg-1.3-16.el6_8.ppc64.rpm
RedHat6ppc64openjpeg-libs< 1.3-16.el6_8openjpeg-libs-1.3-16.el6_8.ppc64.rpm
RedHat6s390openjpeg-debuginfo< 1.3-16.el6_8openjpeg-debuginfo-1.3-16.el6_8.s390.rpm
RedHat6i686openjpeg< 1.3-16.el6_8openjpeg-1.3-16.el6_8.i686.rpm
Rows per page:
1-10 of 221

Related

nessus 42
openvas 51
amazon 2
centos 3
oraclelinux 3
ibm 1
redhat 2
mageia 2
cve 8
prion 8
nvd 8
redhatcve 5
ubuntucve 8
cvelist 8
fedora 19
veracode 7
debiancve 4
hackerone 1
osv 4
freebsd 1
suse 1
debian 7
securityvulns 3
kitploit 1
nessus
nessus
Oracle Linux 6 : openjpeg (ELSA-2017-0559)
2017-03-20 00:00:00
Amazon Linux AMI : openjpeg (ALAS-2017-807)
2017-03-23 00:00:00
RHEL 6 : openjpeg (RHSA-2017:0559)
2017-03-20 00:00:00
openvas
openvas
CentOS Update for openjpeg CESA-2017:0559 centos6
2017-03-21 00:00:00
RedHat Update for openjpeg RHSA-2017:0559-01
2017-03-20 00:00:00
CentOS Update for openjpeg CESA-2017:0838 centos7
2017-03-30 00:00:00
amazon
amazon
Medium: openjpeg
2017-03-22 16:00:00
Important: openjpeg
2014-01-14 15:55:00
centos
centos
openjpeg security update
2017-03-20 08:25:44
openjpeg security update
2017-03-29 10:58:56
openjpeg security update
2013-12-17 19:00:24
oraclelinux
oraclelinux
openjpeg security update
2017-03-19 00:00:00
openjpeg security update
2017-03-22 00:00:00
openjpeg security update
2013-12-17 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in openjpeg affect PowerKVM
2018-06-18 01:36:15
redhat
redhat
(RHSA-2017:0838) Moderate: openjpeg security update
2017-03-23 02:35:48
(RHSA-2013:1850) Important: openjpeg security update
2013-12-17 00:00:00
mageia
mageia
Updated openjpeg packages fix security vulnerability
2017-05-02 09:37:59
Updated openjpeg package fixes security vulnerabilities
2014-01-06 05:10:03
cve
cve
CVE-2016-9675
2016-12-22 21:59:00
CVE-2016-7163
2016-09-21 14:25:28
CVE-2013-6045
2013-12-12 18:55:11
prion
prion
Heap overflow
2016-12-22 21:59:00
Integer overflow
2016-09-21 14:25:00
Heap overflow
2013-12-12 18:55:00
nvd
nvd
CVE-2016-9675
2016-12-22 21:59:00
CVE-2016-7163
2016-09-21 14:25:28
CVE-2013-6045
2013-12-12 18:55:11
redhatcve
redhatcve
CVE-2016-9675
2016-11-29 23:47:33
CVE-2016-7163
2016-09-08 13:19:03
CVE-2016-5139
2016-08-04 08:48:34
ubuntucve
ubuntucve
CVE-2016-9675
2016-12-22 00:00:00
CVE-2016-7163
2016-09-21 00:00:00
CVE-2013-6045
2013-12-12 00:00:00
cvelist
cvelist
CVE-2016-9675
2016-12-22 21:00:00
CVE-2016-7163
2016-09-21 14:00:00
CVE-2013-6045
2013-12-12 18:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: openjpeg2-2.1.1-3.fc25
2016-09-15 19:09:28
[SECURITY] Fedora 24 Update: mingw-openjpeg2-2.1.1-3.fc24
2016-09-18 02:31:22
[SECURITY] Fedora 25 Update: mingw-openjpeg2-2.1.1-3.fc25
2016-09-18 17:45:59
veracode
veracode
Arbitrary Code Execution
2019-05-02 06:43:17
Arbitrary Code Execution And Denial Of Service
2019-05-02 06:43:17
Privilege Escalation
2019-01-15 09:16:31
debiancve
debiancve
CVE-2016-7163
2016-09-21 14:25:28
CVE-2016-5139
2016-08-07 19:59:01
CVE-2016-5159
2016-09-11 10:59:15
hackerone
hackerone
Internet Bug Bounty: CVE-2016-7163 OpenJPEG opj_pi_create_decode Integer Overflow Vulnerability
2016-09-11 06:18:49
osv
osv
openjpeg2 - security update
2017-01-20 00:00:00
openjpeg2 - security update
2018-07-19 00:00:00
openjpeg - regression update
2013-12-03 00:00:00
freebsd
freebsd
openjpeg -- multiple vulnerabilities
2016-09-08 00:00:00
suse
suse
Security update for openjpeg2 (important)
2017-08-17 00:10:07
debian
debian
[SECURITY] [DLA 1433-1] openjpeg2 security update
2018-07-19 20:29:10
[SECURITY] [DSA 2808-2] openjpeg regression update
2014-04-22 21:59:21
[SECURITY] [DSA 2808-1] openjpeg security update
2013-12-03 07:05:53
securityvulns
securityvulns
[SECURITY] [DSA 2808-1] openjpeg security update
2013-12-09 00:00:00
[ MDVSA-2014:008 ] openjpeg
2014-01-29 00:00:00
OpenJPEG library multiple security vulnerabilities
2014-01-29 00:00:00
kitploit
kitploit
CDK - Zero Dependency Container Penetration Toolkit
2021-01-21 11:30:00

0.171 Low

EPSS

Percentile

96.1%

JSON
Related for RHSA-2017:0559
nessus42openvas51amazon2centos3oraclelinux3ibm1redhat2mageia2cve8prion8nvd8redhatcve5ubuntucve8cvelist8fedora19veracode7debiancve4hackerone1osv4freebsd1suse1debian7securityvulns3kitploit1