aports issueshttps://gitlab.alpinelinux.org/alpine/aports/-/issues2019-07-23T11:16:54Zhttps://gitlab.alpinelinux.org/alpine/aports/-/issues/9799[3.7] openjpeg: Multiple vulnerabilities (CVE-2018-14423, CVE-2018-6616)2019-07-23T11:16:54ZAlicha CH[3.7] openjpeg: Multiple vulnerabilities (CVE-2018-14423, CVE-2018-6616)**CVE-2018-14423**: Division-by-zero vulnerabilities in the functions
pi\_next\_pcrl, pi\_next\_cprl, and pi\_next\_rpcl in
lib/openjp3d/pi.c
in OpenJPEG through 2.3.0 allow remote attackers to cause a denial of
service (application cr...**CVE-2018-14423**: Division-by-zero vulnerabilities in the functions
pi\_next\_pcrl, pi\_next\_cprl, and pi\_next\_rpcl in
lib/openjp3d/pi.c
in OpenJPEG through 2.3.0 allow remote attackers to cause a denial of
service (application crash).
### References:
https://nvd.nist.gov/vuln/detail/CVE-2018-14423
https://github.com/uclouvain/openjpeg/issues/1123
### Patch:
https://github.com/uclouvain/openjpeg/commit/bd88611ed9ad7144ec4f3de54790cd848175891b
**CVE-2018-6616**: In OpenJPEG 2.3.0, there is excessive iteration in
the opj\_t1\_encode\_cblks function of openjp2/t1.c. Remote
attackers could leverage this vulnerability to cause a denial of service
via a crafted bmp file.
### References:
https://nvd.nist.gov/vuln/detail/CVE-2018-6616
https://github.com/uclouvain/openjpeg/issues/1059
### Patch:
https://github.com/hlef/openjpeg/commit/8ee335227bbcaf1614124046aa25e53d67b11ec3
*(from redmine: issue id 9799, created on 2018-12-27, closed on 2019-01-01)*
* Relations:
* parent #9796
* Changesets:
* Revision 27c4e5a614c7b015c0329794016f392591b4319c by Francesco Colista on 2019-01-01T07:52:42Z:
```
main/openjpeg: security fixes
- CVE-2018-14423
- CVE-2018-6616
this commit fixes #9799
```3.7.2Francesco ColistaFrancesco Colistahttps://gitlab.alpinelinux.org/alpine/aports/-/issues/9681[3.7] openjpeg: Multiple vulnerabilities (CVE-2017-17480, CVE-2018-18088)2019-07-23T11:18:26ZAlicha CH[3.7] openjpeg: Multiple vulnerabilities (CVE-2017-17480, CVE-2018-18088)CVE-2018-18088: NULL pointer dereference in the imagetopnm function of jp2/convert.c
------------------------------------------------------------------------------------
A flaw was found in OpenJPEG 2.3.0. A NULL pointer dereference for...CVE-2018-18088: NULL pointer dereference in the imagetopnm function of jp2/convert.c
------------------------------------------------------------------------------------
A flaw was found in OpenJPEG 2.3.0. A NULL pointer dereference for “red”
in the
imagetopnm function of jp2/convert.c
### References:
https://github.com/uclouvain/openjpeg/issues/1152
https://nvd.nist.gov/vuln/detail/CVE-2018-18088
### Patch:
https://github.com/uclouvain/openjpeg/commit/cab352e249ed3372dd9355c85e837613fff98fa2
CVE-2017-17480: Stack-buffer overflow in the pgxtovolume function
-----------------------------------------------------------------
In OpenJPEG 2.3.0, a stack-based buffer overflow was discovered in the
pgxtovolume function in jp3d/convert.c. The vulnerability
causes an out-of-bounds write, which may lead to remote denial of
service or possibly remote code execution.
### References:
https://github.com/uclouvain/openjpeg/issues/1044
https://security-tracker.debian.org/tracker/CVE-2017-17480
### Patch:
https://github.com/uclouvain/openjpeg/commit/0bc90e4062a5f9258c91eca018c019b179066c62
*(from redmine: issue id 9681, created on 2018-11-22, closed on 2018-11-26)*
* Relations:
* parent #9678
* Changesets:
* Revision c1056d67e6379994bfff3cc8ff60b100bb94f0a0 by Natanael Copa on 2018-11-22T16:17:26Z:
```
main/openjpeg: security fixes (CVE-2017-17480,CVE-2018-18088)
also remove unused patches
fixes #9681
```3.7.2Francesco ColistaFrancesco Colista