Red Hat Security Advisory: openjpeg security update Security Advisory secalert@redhat.com Red Hat Security Response Team RHSA-2012:1068 Final 1 1 2012-07-11T16:35:00Z Current version 2012-07-11T16:35:00Z 2012-07-11T16:35:00Z Red Hat rhsa-to-cvrf 1.0.1484 2012-07-11T16:40:02Z Updated openjpeg packages that fix two security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. OpenJPEG is an open source library for reading and writing image files in JPEG 2000 format. An input validation flaw, leading to a heap-based buffer overflow, was found in the way OpenJPEG handled the tile number and size in an image tile header. A remote attacker could provide a specially-crafted image file that, when decoded using an application linked against OpenJPEG, would cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2012-3358) OpenJPEG allocated insufficient memory when encoding JPEG 2000 files from input images that have certain color depths. A remote attacker could provide a specially-crafted image file that, when opened in an application linked against OpenJPEG (such as image_to_j2k), would cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2009-5030) Users of OpenJPEG should upgrade to these updated packages, which contain patches to correct these issues. All running applications using OpenJPEG must be restarted for the update to take effect. Please see https://www.redhat.com/footer/terms-of-use.html Copyright © 2012 Red Hat, Inc. All rights reserved. Important https://rhn.redhat.com/errata/RHSA-2012-1068.html https://rhn.redhat.com/errata/RHSA-2012-1068.html https://access.redhat.com/security/updates/classification/#important https://access.redhat.com/security/updates/classification/#important Red Hat Enterprise Linux HPC Node Optional (v. 6) Red Hat Enterprise Linux Server (v. 6) Red Hat Enterprise Linux Workstation (v. 6) Red Hat Enterprise Linux Desktop Optional (v. 6) Red Hat Enterprise Linux Workstation Optional (v. 6) Red Hat Enterprise Linux HPC Node (v. 6) Red Hat Enterprise Linux Desktop (v. 6) Red Hat Enterprise Linux Server Optional (v. 6) openjpeg-1.3-8.el6_3.src.rpm openjpeg-1.3-8.el6_3 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6) openjpeg-1.3-8.el6_3 as a component of Red Hat Enterprise Linux Server (v. 6) openjpeg-1.3-8.el6_3 as a component of Red Hat Enterprise Linux Workstation (v. 6) openjpeg-1.3-8.el6_3 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6) openjpeg-1.3-8.el6_3 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6) openjpeg-1.3-8.el6_3 as a component of Red Hat Enterprise Linux HPC Node (v. 6) openjpeg-1.3-8.el6_3 as a component of Red Hat Enterprise Linux Desktop (v. 6) openjpeg-1.3-8.el6_3 as a component of Red Hat Enterprise Linux Server Optional (v. 6) OpenJPEG allocated insufficient memory when encoding JPEG 2000 files from input images that have certain color depths. A remote attacker could provide a specially-crafted image file that, when opened in an application linked against OpenJPEG (such as image_to_j2k), would cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running the application. 2012-04-13T00:00:00Z 2009-07-31T00:00:00Z CVE-2009-5030 6Client-6.3.z:openjpeg-1.3-8.el6_3 6Client-optional-6.3.z:openjpeg-1.3-8.el6_3 6ComputeNode-6.3.z:openjpeg-1.3-8.el6_3 6ComputeNode-optional-6.3.z:openjpeg-1.3-8.el6_3 6Server-6.3.z:openjpeg-1.3-8.el6_3 6Server-optional-6.3.z:openjpeg-1.3-8.el6_3 6Workstation-6.3.z:openjpeg-1.3-8.el6_3 6Workstation-optional-6.3.z:openjpeg-1.3-8.el6_3 Important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 https://rhn.redhat.com/errata/RHSA-2012-1068.html https://www.redhat.com/security/data/cve/CVE-2009-5030.html CVE-2009-5030 https://bugzilla.redhat.com/show_bug.cgi?id=812317 bz#812317: CVE-2009-5030 openjpeg: Heap memory corruption leading to invalid free by processing certain Gray16 TIFF images An input validation flaw, leading to a heap-based buffer overflow, was found in the way OpenJPEG handled the tile number and size in an image tile header. A remote attacker could provide a specially-crafted image file that, when decoded using an application linked against OpenJPEG, would cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running the application. 2012-06-27T00:00:00Z 2012-07-10T00:00:00Z CVE-2012-3358 6Client-6.3.z:openjpeg-1.3-8.el6_3 6Client-optional-6.3.z:openjpeg-1.3-8.el6_3 6ComputeNode-6.3.z:openjpeg-1.3-8.el6_3 6ComputeNode-optional-6.3.z:openjpeg-1.3-8.el6_3 6Server-6.3.z:openjpeg-1.3-8.el6_3 6Server-optional-6.3.z:openjpeg-1.3-8.el6_3 6Workstation-6.3.z:openjpeg-1.3-8.el6_3 6Workstation-optional-6.3.z:openjpeg-1.3-8.el6_3 Important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 https://rhn.redhat.com/errata/RHSA-2012-1068.html https://www.redhat.com/security/data/cve/CVE-2012-3358.html CVE-2012-3358 https://bugzilla.redhat.com/show_bug.cgi?id=835767 bz#835767: CVE-2012-3358 openjpeg: heap-based buffer overflow when processing JPEG2000 image files