Bug 1036493 (CVE-2013-6053)
Summary: | CVE-2013-6053 openjpeg: out-of-bounds memory read flaws in version 1.5.1 | ||||||
---|---|---|---|---|---|---|---|
Product: | [Other] Security Response | Reporter: | Murray McAllister <mmcallis> | ||||
Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> | ||||
Status: | CLOSED NOTABUG | QA Contact: | |||||
Severity: | medium | Docs Contact: | |||||
Priority: | medium | ||||||
Version: | unspecified | CC: | pfrields, phracek, security-response-team, vdanen | ||||
Target Milestone: | --- | Keywords: | Security | ||||
Target Release: | --- | ||||||
Hardware: | All | ||||||
OS: | Linux | ||||||
Whiteboard: | |||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||
Doc Text: | Story Points: | --- | |||||
Clone Of: | Environment: | ||||||
Last Closed: | 2013-12-06 09:52:14 UTC | Type: | --- | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Bug Depends On: | 1038409, 1038410, 1038415 | ||||||
Bug Blocks: | 1036502 | ||||||
Attachments: |
|
Description
Murray McAllister
2013-12-02 06:57:18 UTC
Created attachment 831460 [details]
proposed patch
Acknowledgements: Red Hat would like to thank Raphael Geissert for reporting these issues during a review for EDF. Created openjpeg tracking bugs for this issue: Affects: fedora-all [bug 1038409] Created mingw-openjpeg tracking bugs for this issue: Affects: fedora-all [bug 1038410] Statement: Not Vulnerable. This issue does not affect the version of openjpeg as shipped with Red Hat Enterprise Linux 6. mingw-openjpeg-1.5.1-5.fc20 has been pushed to the Fedora 20 stable repository. If problems still persist, please make note of it in this bug report. mingw-openjpeg-1.5.1-5.fc19 has been pushed to the Fedora 19 stable repository. If problems still persist, please make note of it in this bug report. openjpeg-1.5.1-8.fc20 has been pushed to the Fedora 20 stable repository. If problems still persist, please make note of it in this bug report. openjpeg-1.5.1-8.fc19 has been pushed to the Fedora 19 stable repository. If problems still persist, please make note of it in this bug report. |