Univention Bugzilla – Bug 27101
openjpeg: Memory Corruption (3.0)
Last modified: 2019-04-11 19:23:39 CEST
CVE-2009-5030 (Die CVE-ID ist von 2009, wurde aber erst kürzlich zugewiesen) Memory Corruption in der Umwandlung nach JPEG2000 erlaubt das Ausführen von Schadcode.
Bufferoverflow (CVE-2012-3358)
\item Bufferoverflow in der Verarbeitung von JPEG2000-Bildern (CVE-2012-3535)
The maintenance with bug and security fixes for UCS 3.0-x has ended on 30th June 2013. The maintenance of the UCS 3.x major series is continued by UCS 3.1-x that is supplied with bug and security fixes. Customers still on UCS 3.0-x are encouraged to update to UCS 3.1 that contains, among other things, Linux Kernel 3.2, Univention App Center, an update of Samba 3 and Samba 4, support for Microsoft Windows 2012 and Windows 8. Please contact your partner or Univention for any questions.