libopenjp2-7-2.5.0-4.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:13571 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z libopenjp2-7-2.5.0-4.1 on GA media These are all security issues fixed in the libopenjp2-7-2.5.0-4.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-13571 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:13571 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2018-16376/ SUSE CVE CVE-2018-16376 page https://www.suse.com/security/cve/CVE-2018-20845/ SUSE CVE CVE-2018-20845 page https://www.suse.com/security/cve/CVE-2018-20846/ SUSE CVE CVE-2018-20846 page https://www.suse.com/security/cve/CVE-2018-21010/ SUSE CVE CVE-2018-21010 page https://www.suse.com/security/cve/CVE-2020-15389/ SUSE CVE CVE-2020-15389 page https://www.suse.com/security/cve/CVE-2020-27814/ SUSE CVE CVE-2020-27814 page https://www.suse.com/security/cve/CVE-2020-27823/ SUSE CVE CVE-2020-27823 page https://www.suse.com/security/cve/CVE-2020-27824/ SUSE CVE CVE-2020-27824 page https://www.suse.com/security/cve/CVE-2020-27841/ SUSE CVE CVE-2020-27841 page https://www.suse.com/security/cve/CVE-2020-27842/ SUSE CVE CVE-2020-27842 page https://www.suse.com/security/cve/CVE-2020-27843/ SUSE CVE CVE-2020-27843 page https://www.suse.com/security/cve/CVE-2020-27845/ SUSE CVE CVE-2020-27845 page https://www.suse.com/security/cve/CVE-2021-29338/ SUSE CVE CVE-2021-29338 page https://www.suse.com/security/cve/CVE-2022-1122/ SUSE CVE CVE-2022-1122 page openSUSE Tumbleweed libopenjp2-7-2.5.0-4.1 libopenjp2-7-32bit-2.5.0-4.1 libopenjp2-7-x86-64-v3-2.5.0-4.1 openjpeg2-2.5.0-4.1 openjpeg2-devel-2.5.0-4.1 openjpeg2-devel-doc-2.5.0-4.1 libopenjp2-7-2.5.0-4.1 as a component of openSUSE Tumbleweed libopenjp2-7-32bit-2.5.0-4.1 as a component of openSUSE Tumbleweed libopenjp2-7-x86-64-v3-2.5.0-4.1 as a component of openSUSE Tumbleweed openjpeg2-2.5.0-4.1 as a component of openSUSE Tumbleweed openjpeg2-devel-2.5.0-4.1 as a component of openSUSE Tumbleweed openjpeg2-devel-doc-2.5.0-4.1 as a component of openSUSE Tumbleweed An issue was discovered in OpenJPEG 2.3.0. A heap-based buffer overflow was discovered in the function t2_encode_packet in lib/openmj2/t2.c. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly unspecified other impact. CVE-2018-16376 openSUSE Tumbleweed:libopenjp2-7-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-32bit-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-x86-64-v3-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-doc-2.5.0-4.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-16376.html CVE-2018-16376 https://bugzilla.suse.com/1106881 SUSE Bug 1106881 Division-by-zero vulnerabilities in the functions pi_next_pcrl, pi_next_cprl, and pi_next_rpcl in openmj2/pi.c in OpenJPEG through 2.3.0 allow remote attackers to cause a denial of service (application crash). CVE-2018-20845 openSUSE Tumbleweed:libopenjp2-7-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-32bit-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-x86-64-v3-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-doc-2.5.0-4.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-20845.html CVE-2018-20845 https://bugzilla.suse.com/1140130 SUSE Bug 1140130 Out-of-bounds accesses in the functions pi_next_lrcp, pi_next_rlcp, pi_next_rpcl, pi_next_pcrl, pi_next_rpcl, and pi_next_cprl in openmj2/pi.c in OpenJPEG through 2.3.0 allow remote attackers to cause a denial of service (application crash). CVE-2018-20846 openSUSE Tumbleweed:libopenjp2-7-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-32bit-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-x86-64-v3-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-doc-2.5.0-4.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-20846.html CVE-2018-20846 https://bugzilla.suse.com/1140205 SUSE Bug 1140205 OpenJPEG before 2.3.1 has a heap buffer overflow in color_apply_icc_profile in bin/common/color.c. CVE-2018-21010 openSUSE Tumbleweed:libopenjp2-7-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-32bit-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-x86-64-v3-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-doc-2.5.0-4.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-21010.html CVE-2018-21010 https://bugzilla.suse.com/1149789 SUSE Bug 1149789 jp2/opj_decompress.c in OpenJPEG through 2.3.1 has a use-after-free that can be triggered if there is a mix of valid and invalid files in a directory operated on by the decompressor. Triggering a double-free may also be possible. This is related to calling opj_image_destroy twice. CVE-2020-15389 openSUSE Tumbleweed:libopenjp2-7-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-32bit-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-x86-64-v3-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-doc-2.5.0-4.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-15389.html CVE-2020-15389 https://bugzilla.suse.com/1173578 SUSE Bug 1173578 A heap-buffer overflow was found in the way openjpeg2 handled certain PNG format files. An attacker could use this flaw to cause an application crash or in some cases execute arbitrary code with the permission of the user running such an application. CVE-2020-27814 openSUSE Tumbleweed:libopenjp2-7-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-32bit-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-x86-64-v3-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-doc-2.5.0-4.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-27814.html CVE-2020-27814 https://bugzilla.suse.com/1179594 SUSE Bug 1179594 A flaw was found in OpenJPEG's encoder. This flaw allows an attacker to pass specially crafted x,y offset input to OpenJPEG to use during encoding. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability. CVE-2020-27823 openSUSE Tumbleweed:libopenjp2-7-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-32bit-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-x86-64-v3-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-doc-2.5.0-4.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-27823.html CVE-2020-27823 https://bugzilla.suse.com/1180457 SUSE Bug 1180457 A flaw was found in OpenJPEG's encoder in the opj_dwt_calc_explicit_stepsizes() function. This flaw allows an attacker who can supply crafted input to decomposition levels to cause a buffer overflow. The highest threat from this vulnerability is to system availability. CVE-2020-27824 openSUSE Tumbleweed:libopenjp2-7-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-32bit-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-x86-64-v3-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-doc-2.5.0-4.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-27824.html CVE-2020-27824 https://bugzilla.suse.com/1179821 SUSE Bug 1179821 There's a flaw in openjpeg in versions prior to 2.4.0 in src/lib/openjp2/pi.c. When an attacker is able to provide crafted input to be processed by the openjpeg encoder, this could cause an out-of-bounds read. The greatest impact from this flaw is to application availability. CVE-2020-27841 openSUSE Tumbleweed:libopenjp2-7-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-32bit-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-x86-64-v3-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-doc-2.5.0-4.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-27841.html CVE-2020-27841 https://bugzilla.suse.com/1180042 SUSE Bug 1180042 There's a flaw in openjpeg's t2 encoder in versions prior to 2.4.0. An attacker who is able to provide crafted input to be processed by openjpeg could cause a null pointer dereference. The highest impact of this flaw is to application availability. CVE-2020-27842 openSUSE Tumbleweed:libopenjp2-7-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-32bit-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-x86-64-v3-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-doc-2.5.0-4.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-27842.html CVE-2020-27842 https://bugzilla.suse.com/1180043 SUSE Bug 1180043 A flaw was found in OpenJPEG in versions prior to 2.4.0. This flaw allows an attacker to provide specially crafted input to the conversion or encoding functionality, causing an out-of-bounds read. The highest threat from this vulnerability is system availability. CVE-2020-27843 openSUSE Tumbleweed:libopenjp2-7-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-32bit-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-x86-64-v3-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-doc-2.5.0-4.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-27843.html CVE-2020-27843 https://bugzilla.suse.com/1180044 SUSE Bug 1180044 There's a flaw in src/lib/openjp2/pi.c of openjpeg in versions prior to 2.4.0. If an attacker is able to provide untrusted input to openjpeg's conversion/encoding functionality, they could cause an out-of-bounds read. The highest impact of this flaw is to application availability. CVE-2020-27845 openSUSE Tumbleweed:libopenjp2-7-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-32bit-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-x86-64-v3-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-doc-2.5.0-4.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-27845.html CVE-2020-27845 https://bugzilla.suse.com/1180046 SUSE Bug 1180046 Integer Overflow in OpenJPEG v2.4.0 allows remote attackers to crash the application, causing a Denial of Service (DoS). This occurs when the attacker uses the command line option "-ImgDir" on a directory that contains 1048576 files. CVE-2021-29338 openSUSE Tumbleweed:libopenjp2-7-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-32bit-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-x86-64-v3-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-doc-2.5.0-4.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-29338.html CVE-2021-29338 https://bugzilla.suse.com/1184774 SUSE Bug 1184774 A flaw was found in the opj2_decompress program in openjpeg2 2.4.0 in the way it handles an input directory with a large number of files. When it fails to allocate a buffer to store the filenames of the input directory, it calls free() on an uninitialized pointer, leading to a segmentation fault and a denial of service. CVE-2022-1122 openSUSE Tumbleweed:libopenjp2-7-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-32bit-2.5.0-4.1 openSUSE Tumbleweed:libopenjp2-7-x86-64-v3-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-2.5.0-4.1 openSUSE Tumbleweed:openjpeg2-devel-doc-2.5.0-4.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-1122.html CVE-2022-1122 https://bugzilla.suse.com/1197738 SUSE Bug 1197738