[ubuntu/jammy-updates] openjpeg2 2.4.0-6ubuntu0.2 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Tue Nov 5 01:28:20 UTC 2024
openjpeg2 (2.4.0-6ubuntu0.2) jammy-security; urgency=medium
* SECURITY UPDATE: heap buffer overflow
- debian/patches/CVE-2021-3575.patch: opj_decompress: fix off-by-one
read heap-buffer-overflow in sycc420_to_rgb() when x0 and y0 are odd
- CVE-2021-3575
* SECURITY UPDATE: integer overflow
- debian/patches/CVE-2021-29338.patch: Avoid overflow in
multiplications in utilities related to a big number of files in a
directory
- CVE-2021-29338
* SECURITY UPDATE: denial of service
- debian/patches/CVE-2022-1122.patch: Fix segfault in
src/bin/jp2/opj_decompress.c due to uninitialized pointer
- CVE-2022-1122
Date: 2024-10-22 06:30:16.583595+00:00
Changed-By: Bruce Cable <bruce.cable at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/openjpeg2/2.4.0-6ubuntu0.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list