This bug was fixed in the package openjpeg2 - 2.1.1-1ubuntu0.1
---
openjpeg2 (2.1.1-1ubuntu0.1) yakkety-security; urgency=medium
* SECURITY UPDATE: Out-of-bound heap write possible resulting
in heap corruption and arbitrary code execution (lp: #1630702)
- debian/patches/CVE-
This bug was fixed in the package openjpeg2 - 2.1.0-2.1ubuntu0.1
---
openjpeg2 (2.1.0-2.1ubuntu0.1) xenial-security; urgency=medium
* SECURITY UPDATE: Out-of-bound heap write possible resulting
in heap corruption and arbitrary code execution (lp: #1630702)
- debian/patches/C
ACK on the debdiffs, thanks!
Packages are currently building and will be released today.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1630702
Title:
Fix for CVE-2016-8332 and CVE-2016-7163
To man
** Also affects: openjpeg2 (Ubuntu Xenial)
Importance: Undecided
Status: New
** Also affects: openjpeg2 (Ubuntu Yakkety)
Importance: Medium
Assignee: Nikita Yerenkov-Scott (yerenkov-scott)
Status: Confirmed
** Changed in: openjpeg2 (Ubuntu Xenial)
Status: New => Co
** Changed in: openjpeg2 (Ubuntu)
Assignee: (unassigned) => Nikita Yerenkov-Scott (yerenkov-scott)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1630702
Title:
Fix for CVE-2016-8332 and CVE-201
** Changed in: openjpeg2 (Ubuntu)
Importance: Undecided => Medium
** Tags added: patch
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1630702
Title:
Fix for CVE-2016-8332 and CVE-2016-7163
To ma
This was my conclusion after looking through the CVEs in the list for
openjpeg2:
CVE-2014-7945: Half done but unconfirmable (some files are so different I am
unable to find the relevant lines in them).
CVE-2014-7947: Can’t find patch.
CVE-2015-8871: Seems a patched.
CVE-2016-1923: Can’t find patc
