FEDORA-2021-e145f477df — security update for mingw-openjpeg2 and openjpeg2

stable

mingw-openjpeg2-2.3.1-12.fc33 and openjpeg2-2.3.1-11.fc33

FEDORA-2021-e145f477df created by smani 3 years ago for Fedora 33

Add proposed patches for CVE-2021-29338 and a heap buffer overflow.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2021-e145f477df

This update has been submitted for testing by smani.

3 years ago

This update's test gating status has been changed to 'failed'.

3 years ago

This update's test gating status has been changed to 'waiting'.

3 years ago

This update's test gating status has been changed to 'failed'.

3 years ago

This update's test gating status has been changed to 'passed'.

3 years ago

This update has been pushed to testing.

3 years ago

frantisekz commented & provided feedback 3 years ago

karma

Works fine!

This update has been submitted for stable by bodhi.

3 years ago

This update has been pushed to stable.

3 years ago

Please login to add feedback.

Metadata

Type

security

Severity

medium

Karma

Signed

Content Type

RPM

Test Gating

passed

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

14 days

Dates

submitted

3 years ago

in testing

3 years ago

in stable

3 years ago

Builds

mingw-openjpeg2-2.3.1-12.fc33

openjpeg2-2.3.1-11.fc33

BZ#1950103 CVE-2021-29338 mingw-openjpeg2: openjpeg2: out-of-bounds write due to an integer overflow in opj_compress.c [fedora-all]

BZ#1950105 CVE-2021-29338 openjpeg2: out-of-bounds write due to an integer overflow in opj_compress.c [fedora-all]

BZ#1957618 CVE-2021-3575 openjpeg2: openjpeg: heap-buffer-overflow in color.c may lead to DoS or arbitrary code execution [fedora-all]

mingw-openjpeg2-2.3.1-12.fc33

openjpeg2-2.3.1-11.fc33

Automated Test Results

passed