Bugzilla – Bug 1180042
VUL-1: CVE-2020-27841: openjpeg,openjpeg2,ghostscript: buffer over-read in lib/openjp2/pi.c
Last modified: 2022-01-14 11:11:12 UTC
CVE-2020-27841 A flaw was found in OpenJPEG. Specially crafted files can lead to multiple heap-based buffer overflows in lib/openjp2/pi.c. References: https://github.com/uclouvain/openjpeg/issues/1293 https://bugzilla.redhat.com/show_bug.cgi?id=1907510 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27841
I did a git bisect and the earliest vulnerable commit is: commit 84f3bebbff515f2b00ccf0c817930ebb10b91760 (refs/bisect/bad) Author: Even Rouault <even.rouault@spatialys.com> Date: Wed Feb 12 15:55:16 2020 +0100 Implement writing of IMF profiles Add -IMF switch to opj_compress as well ---------------------------------------------------------------------- None of the PoCs triggers a buffer over-read without -IMF. SUSE:SLE-12:Update ghostscript Affected [2] SUSE:SLE-12-SP2:Update openjpeg2 Not affected [1] SUSE:SLE-15:Update ghostscript Affected [2] SUSE:SLE-15:Update openjpeg Not affected [1] SUSE:SLE-15:Update openjpeg2 Affected [2] [1] Not reproducible. No IMF support. [2] Not reproducible. No IMF support. Upstream patch applies. Please double-check.
Hi, any update on this?