A size-validation issue was discovered in opjj2kwritesot in lib/openjp2/j2k.c in OpenJPEG 2.2.0. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service (heap-based buffer overflow affecting opjwritebytesLE in lib/openjp2/cio.c) or possibly remote code execution. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-14152.
{ "availability": "No subscription required", "ubuntu_priority": "low", "binaries": [ { "libopenjpip-dec-server-dbgsym": "2.1.2-1.1+deb9u2build0.1", "libopenjp2-tools": "2.1.2-1.1+deb9u2build0.1", "libopenjpip7": "2.1.2-1.1+deb9u2build0.1", "libopenjp2-7-dev-dbgsym": "2.1.2-1.1+deb9u2build0.1", "libopenjp2-7": "2.1.2-1.1+deb9u2build0.1", "libopenjp2-tools-dbgsym": "2.1.2-1.1+deb9u2build0.1", "libopenjp2-7-dbg": "2.1.2-1.1+deb9u2build0.1", "libopenjpip-server": "2.1.2-1.1+deb9u2build0.1", "libopenjp2-7-dev": "2.1.2-1.1+deb9u2build0.1", "libopenjpip-server-dbgsym": "2.1.2-1.1+deb9u2build0.1", "libopenjp3d7-dbgsym": "2.1.2-1.1+deb9u2build0.1", "libopenjp3d7": "2.1.2-1.1+deb9u2build0.1", "libopenjp2-7-dbgsym": "2.1.2-1.1+deb9u2build0.1", "libopenjp3d-tools-dbgsym": "2.1.2-1.1+deb9u2build0.1", "libopenjpip7-dbgsym": "2.1.2-1.1+deb9u2build0.1", "libopenjpip-dec-server": "2.1.2-1.1+deb9u2build0.1", "libopenjp3d-tools": "2.1.2-1.1+deb9u2build0.1", "libopenjpip-viewer": "2.1.2-1.1+deb9u2build0.1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "low", "binaries": [ { "libopenjpip-dec-server-dbgsym": "2.3.0-1", "libopenjp2-tools": "2.3.0-1", "libopenjpip7": "2.3.0-1", "libopenjp2-7": "2.3.0-1", "libopenjp2-tools-dbgsym": "2.3.0-1", "libopenjp2-7-dbgsym": "2.3.0-1", "libopenjpip-server": "2.3.0-1", "libopenjp2-7-dev": "2.3.0-1", "libopenjpip-server-dbgsym": "2.3.0-1", "libopenjp3d7-dbgsym": "2.3.0-1", "libopenjp3d7": "2.3.0-1", "libopenjp3d-tools-dbgsym": "2.3.0-1", "libopenjpip7-dbgsym": "2.3.0-1", "libopenjpip-dec-server": "2.3.0-1", "libopenjp3d-tools": "2.3.0-1", "libopenjpip-viewer": "2.3.0-1" } ] }