A flaw was found in OpenJPEG’s encoder in the opjdwtcalcexplicitstepsizes() function. This flaw allows an attacker who can supply crafted input to decomposition levels to cause a buffer overflow. The highest threat from this vulnerability is to system availability.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libgs9-dbgsym": "9.26~dfsg+0-0ubuntu0.16.04.14", "ghostscript-dbgsym": "9.26~dfsg+0-0ubuntu0.16.04.14", "ghostscript-dbg": "9.26~dfsg+0-0ubuntu0.16.04.14", "ghostscript-doc": "9.26~dfsg+0-0ubuntu0.16.04.14", "ghostscript-x": "9.26~dfsg+0-0ubuntu0.16.04.14", "libgs9": "9.26~dfsg+0-0ubuntu0.16.04.14", "ghostscript-x-dbgsym": "9.26~dfsg+0-0ubuntu0.16.04.14", "libgs-dev-dbgsym": "9.26~dfsg+0-0ubuntu0.16.04.14", "libgs9-common": "9.26~dfsg+0-0ubuntu0.16.04.14", "ghostscript": "9.26~dfsg+0-0ubuntu0.16.04.14", "libgs-dev": "9.26~dfsg+0-0ubuntu0.16.04.14" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libopenjpip-dec-server-dbgsym": "2.1.2-1.1+deb9u6build0.16.04.1", "libopenjp2-tools": "2.1.2-1.1+deb9u6build0.16.04.1", "libopenjpip7": "2.1.2-1.1+deb9u6build0.16.04.1", "libopenjp2-7-dev-dbgsym": "2.1.2-1.1+deb9u6build0.16.04.1", "libopenjp2-7": "2.1.2-1.1+deb9u6build0.16.04.1", "libopenjp2-tools-dbgsym": "2.1.2-1.1+deb9u6build0.16.04.1", "libopenjp2-7-dbg": "2.1.2-1.1+deb9u6build0.16.04.1", "libopenjpip-server": "2.1.2-1.1+deb9u6build0.16.04.1", "libopenjp2-7-dev": "2.1.2-1.1+deb9u6build0.16.04.1", "libopenjpip-server-dbgsym": "2.1.2-1.1+deb9u6build0.16.04.1", "libopenjp3d7-dbgsym": "2.1.2-1.1+deb9u6build0.16.04.1", "libopenjp3d7": "2.1.2-1.1+deb9u6build0.16.04.1", "libopenjp2-7-dbgsym": "2.1.2-1.1+deb9u6build0.16.04.1", "libopenjp3d-tools-dbgsym": "2.1.2-1.1+deb9u6build0.16.04.1", "libopenjpip7-dbgsym": "2.1.2-1.1+deb9u6build0.16.04.1", "libopenjpip-dec-server": "2.1.2-1.1+deb9u6build0.16.04.1", "libopenjp3d-tools": "2.1.2-1.1+deb9u6build0.16.04.1", "libopenjpip-viewer": "2.1.2-1.1+deb9u6build0.16.04.1" } ] }
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "openjpip-server-dbgsym": "1:1.5.2-3.1ubuntu0.1~esm2", "openjpip-viewer-xerces": "1:1.5.2-3.1ubuntu0.1~esm2", "openjpip-dec-server": "1:1.5.2-3.1ubuntu0.1~esm2", "libopenjpeg5": "1:1.5.2-3.1ubuntu0.1~esm2", "openjpeg-tools": "1:1.5.2-3.1ubuntu0.1~esm2", "libopenjpeg5-dbgsym": "1:1.5.2-3.1ubuntu0.1~esm2", "openjpip-server": "1:1.5.2-3.1ubuntu0.1~esm2", "libopenjpeg-java-dbgsym": "1:1.5.2-3.1ubuntu0.1~esm2", "libopenjpeg5-dbg": "1:1.5.2-3.1ubuntu0.1~esm2", "libopenjpeg-java": "1:1.5.2-3.1ubuntu0.1~esm2", "libopenjpeg-dev-dbgsym": "1:1.5.2-3.1ubuntu0.1~esm2", "libopenjpeg-dev": "1:1.5.2-3.1ubuntu0.1~esm2", "openjpip-dec-server-dbgsym": "1:1.5.2-3.1ubuntu0.1~esm2", "openjpeg-tools-dbgsym": "1:1.5.2-3.1ubuntu0.1~esm2", "openjpip-viewer": "1:1.5.2-3.1ubuntu0.1~esm2" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "ghostscript-dbg": "9.26~dfsg+0-0ubuntu0.18.04.14", "ghostscript-doc": "9.26~dfsg+0-0ubuntu0.18.04.14", "ghostscript-x": "9.26~dfsg+0-0ubuntu0.18.04.14", "libgs9": "9.26~dfsg+0-0ubuntu0.18.04.14", "libgs-dev": "9.26~dfsg+0-0ubuntu0.18.04.14", "libgs9-common": "9.26~dfsg+0-0ubuntu0.18.04.14", "ghostscript": "9.26~dfsg+0-0ubuntu0.18.04.14" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libopenjpip-dec-server-dbgsym": "2.3.0-2+deb10u2build0.18.04.1", "libopenjp2-tools": "2.3.0-2+deb10u2build0.18.04.1", "libopenjpip7": "2.3.0-2+deb10u2build0.18.04.1", "libopenjp2-7": "2.3.0-2+deb10u2build0.18.04.1", "libopenjp2-tools-dbgsym": "2.3.0-2+deb10u2build0.18.04.1", "libopenjp2-7-dbgsym": "2.3.0-2+deb10u2build0.18.04.1", "libopenjpip-server": "2.3.0-2+deb10u2build0.18.04.1", "libopenjp2-7-dev": "2.3.0-2+deb10u2build0.18.04.1", "libopenjpip-server-dbgsym": "2.3.0-2+deb10u2build0.18.04.1", "libopenjp3d7-dbgsym": "2.3.0-2+deb10u2build0.18.04.1", "libopenjp3d7": "2.3.0-2+deb10u2build0.18.04.1", "libopenjp3d-tools-dbgsym": "2.3.0-2+deb10u2build0.18.04.1", "libopenjpip7-dbgsym": "2.3.0-2+deb10u2build0.18.04.1", "libopenjpip-dec-server": "2.3.0-2+deb10u2build0.18.04.1", "libopenjp3d-tools": "2.3.0-2+deb10u2build0.18.04.1", "libopenjpip-viewer": "2.3.0-2+deb10u2build0.18.04.1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libopenjpip-dec-server-dbgsym": "2.3.1-1ubuntu4.20.04.1", "libopenjp2-tools": "2.3.1-1ubuntu4.20.04.1", "libopenjpip7": "2.3.1-1ubuntu4.20.04.1", "libopenjp2-7": "2.3.1-1ubuntu4.20.04.1", "libopenjp2-tools-dbgsym": "2.3.1-1ubuntu4.20.04.1", "libopenjp2-7-dbgsym": "2.3.1-1ubuntu4.20.04.1", "libopenjpip-server": "2.3.1-1ubuntu4.20.04.1", "libopenjp2-7-dev": "2.3.1-1ubuntu4.20.04.1", "libopenjpip-server-dbgsym": "2.3.1-1ubuntu4.20.04.1", "libopenjp3d7-dbgsym": "2.3.1-1ubuntu4.20.04.1", "libopenjp3d7": "2.3.1-1ubuntu4.20.04.1", "libopenjp3d-tools-dbgsym": "2.3.1-1ubuntu4.20.04.1", "libopenjpip7-dbgsym": "2.3.1-1ubuntu4.20.04.1", "libopenjpip-dec-server": "2.3.1-1ubuntu4.20.04.1", "libopenjp3d-tools": "2.3.1-1ubuntu4.20.04.1", "libopenjpip-viewer": "2.3.1-1ubuntu4.20.04.1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libopenjpip-dec-server-dbgsym": "2.3.1-1ubuntu5", "libopenjp2-tools": "2.3.1-1ubuntu5", "libopenjpip7": "2.3.1-1ubuntu5", "libopenjp2-7": "2.3.1-1ubuntu5", "libopenjp2-tools-dbgsym": "2.3.1-1ubuntu5", "libopenjp2-7-dbgsym": "2.3.1-1ubuntu5", "libopenjpip-server": "2.3.1-1ubuntu5", "libopenjp2-7-dev": "2.3.1-1ubuntu5", "libopenjpip-server-dbgsym": "2.3.1-1ubuntu5", "libopenjp3d7-dbgsym": "2.3.1-1ubuntu5", "libopenjp3d7": "2.3.1-1ubuntu5", "libopenjp3d-tools-dbgsym": "2.3.1-1ubuntu5", "libopenjpip7-dbgsym": "2.3.1-1ubuntu5", "libopenjpip-dec-server": "2.3.1-1ubuntu5", "libopenjp3d-tools": "2.3.1-1ubuntu5", "libopenjpip-viewer": "2.3.1-1ubuntu5" } ] }