Univention Bugzilla – Full Text Bug Listing |
Summary: | openjpeg2: Multiple issues (4.3) | ||
---|---|---|---|
Product: | UCS | Reporter: | Quality Assurance <qa> |
Component: | Security updates | Assignee: | Quality Assurance <qa> |
Status: | CLOSED FIXED | QA Contact: | Philipp Hahn <hahn> |
Severity: | normal | ||
Priority: | P3 | ||
Version: | UCS 4.3 | ||
Target Milestone: | UCS 4.3-3-errata | ||
Hardware: | All | ||
OS: | Linux | ||
What kind of report is it?: | Security Issue | What type of bug is this?: | --- |
Who will be affected by this bug?: | --- | How will those affected feel about the bug?: | --- |
User Pain: | Enterprise Customer affected?: | ||
School Customer affected?: | ISV affected?: | ||
Waiting Support: | Flags outvoted (downgraded) after PO Review: | ||
Ticket number: | Bug group (optional): | ||
Max CVSS v3 score: | 5.3 (CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L) Debian RedHat |
Description
Quality Assurance
2019-03-11 12:34:10 CET
--- mirror/ftp/4.3/unmaintained/4.3-0/source/openjpeg2_2.1.2-1.1+deb9u2.dsc +++ apt/ucs_4.3-0-errata4.3-3/source/openjpeg2_2.1.2-1.1+deb9u3.dsc @@ -1,3 +1,16 @@ +2.1.2-1.1+deb9u3 [Thu, 07 Mar 2019 16:41:30 -0500] Luciano Bello <luciano@debian.org>: + + * Non-maintainer upload by the Security Team. + * CVE-2018-14423: Division-by-zero vulnerabilities in the functions + pi_next_pcrl, pi_next_cprl, and pi_next_rpcl (closes: #904873). + * CVE-2018-6616: Excessive Iteration in opj_t1_encode_cblks + (closes: #889683). + * CVE-2017-17480: Write stack buffer overflow due to missing buffer + length formatter in fscanf call (closes: #884738). + * CVE-2018-18088: Null pointer dereference caused by null image + components in imagetopnm (closes: #910763). + * CVE-2018-5785: Integer overflow in convertbmp.c (closes: #888533). + 2.1.2-1.1+deb9u2 [Mon, 16 Oct 2017 21:15:20 +0200] Mathieu Malaterre <malat@debian.org>: * Fix whitespace/indent mess <http://10.200.17.11/4.3-3/#6512527586340119909> OK: yaml OK: announce_errata OK: patch OK: piuparts [4.3-3] 1ccb099747 Bug #48951: openjpeg2 2.1.2-1.1+deb9u3 doc/errata/staging/openjpeg2.yaml | 18 ++++++++---------- 1 file changed, 8 insertions(+), 10 deletions(-) [4.3-3] 4e3b5d3402 Bug #48951: openjpeg2 2.1.2-1.1+deb9u3 doc/errata/staging/openjpeg2.yaml | 28 ++++++++++++++++++++++++++++ 1 file changed, 28 insertions(+) |