Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 621600 (CVE-2016-7163) - <media-libs/openjpeg-2.1.1_p20160922: Integer overflow in opj_pi_create_decode
Summary: <media-libs/openjpeg-2.1.1_p20160922: Integer overflow in opj_pi_create_decode
Status: RESOLVED FIXED
Alias: CVE-2016-7163
Product: Gentoo Linux
Classification: Unclassified
Component: Current packages (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL: https://cve.mitre.org/cgi-bin/cvename...
Whiteboard:
Keywords: PATCH
Depends on:
Blocks:
 
Reported: 2017-06-12 15:11 UTC by Andrey Ovcharov
Modified: 2017-06-13 21:00 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---


Attachments
CVE-2016-7163-1.patch (CVE-2016-7163-1.patch,1.03 KB, patch)
2017-06-12 15:14 UTC, Andrey Ovcharov
Details | Diff
CVE-2016-7163-2.patch (CVE-2016-7163-2.patch,941 bytes, patch)
2017-06-12 15:14 UTC, Andrey Ovcharov
Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description Andrey Ovcharov 2017-06-12 15:11:53 UTC
media-libs/openjpeg-2.1.2 CVE-2016-7163
Comment 1 Andrey Ovcharov 2017-06-12 15:14:23 UTC
Created attachment 476142 [details, diff]
CVE-2016-7163-1.patch
Comment 2 Andrey Ovcharov 2017-06-12 15:14:46 UTC
Created attachment 476144 [details, diff]
CVE-2016-7163-2.patch
Comment 3 Jonas Stein gentoo-dev 2017-06-12 19:50:05 UTC
Thank you
Comment 4 Thomas Deutschmann gentoo-dev Security 2017-06-13 21:00:25 UTC
This is already fixed in our stable =media-libs/openjpeg-2.1.1_p20160922 snapshot.