Several integer overflows and subsequent segfaults when attempting to
compress/decompress gigapixel images.
I'd like to point out that in the announcement of this bug on oss-security , it says:
> integer overflow and subsequent heap corruption in libjpeg-turbo *2.0.3 and earlier*
If that is right, a simple bump to 2.0.3 would not have fixed it in our distro.
I tried to follow the link to NIST, but there it is stated in term of Android versions only, and my eyes glaze over. Sorry, please someone follow up.
@ Ian: This bug is about CVE-2019-2201 which is linked to https://github.com/libjpeg-turbo/libjpeg-turbo/commit/2a9e3bd7430cfda1bc812d139e0609c6aca0b884 and this commit is present in v2.0.3. I guess the CVE text is not correct. If you have any other information, please share.
New GLSA request filed.
This issue was resolved and addressed in
GLSA 202003-23 at https://security.gentoo.org/glsa/202003-23
by GLSA coordinator Thomas Deutschmann (whissi).