FEDORA-2017-65e9bfa56d

enhancement update in Fedora 25 for openjpeg2

Status: stable 2 months ago

Update to version 2.2.0, see https://github.com/uclouvain/openjpeg/blob/v2.2.0/NEWS.md for details.

Comments 9

This update has been submitted for testing by smani.

smani edited this update.

This update has been pushed to testing.

works for me in a VM

karma: +1

works for me

karma: +1

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

This broke FFmpeg-3.2.x, which doesn't support openjpeg 2.2 without patching.


Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown.

-1 0 +1 Feedback Guidelines
#1390234 CVE-2016-9112 CVE-2016-9113 CVE-2016-9114 CVE-2016-9115 CVE-2016-9116 CVE-2016-9117 CVE-2016-9118 openjpeg2: Multiple security issues [fedora-all]
#1435072 CVE-2016-5139 openjpeg2: chromium-browser, openjpeg: Heap overflow in parsing of JPEG2000 precincts [fedora-all]
#1435071 CVE-2016-5158 openjpeg2: chromium-browser, openjpeg: heap overflow due to unsafe use of opj_aligned_malloc [fedora-all]
#1435070 CVE-2016-5159 openjpeg2: chromium-browser, openjpeg: heap overflow in parsing of JPEG2000 code blocks [fedora-all]
#1418150 CVE-2016-9112 openjpeg2: Floating point exception vulnerability in openjpeg2 when processing untrusted images [fedora-all]
Does the system's basic functionality continue to work after this update?
Is the update generally functional?
Content Type
RPM
Status
stable
Submitted by
Update Type
enhancement
Karma
+3
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted 2 months ago
in testing 2 months ago
in stable 2 months ago
modified 2 months ago

Related Bugs 5

00 #1390234 CVE-2016-9112 CVE-2016-9113 CVE-2016-9114 CVE-2016-9115 CVE-2016-9116 CVE-2016-9117 CVE-2016-9118 openjpeg2: Multiple security issues [fedora-all]
00 #1435072 CVE-2016-5139 openjpeg2: chromium-browser, openjpeg: Heap overflow in parsing of JPEG2000 precincts [fedora-all]
00 #1435071 CVE-2016-5158 openjpeg2: chromium-browser, openjpeg: heap overflow due to unsafe use of opj_aligned_malloc [fedora-all]
00 #1435070 CVE-2016-5159 openjpeg2: chromium-browser, openjpeg: heap overflow in parsing of JPEG2000 code blocks [fedora-all]
00 #1418150 CVE-2016-9112 openjpeg2: Floating point exception vulnerability in openjpeg2 when processing untrusted images [fedora-all]

Automated Test Results