openjpeg

• Author: kikadf
• Vulnerable: 1.5.1-2
• Unaffected: 1.5.1-3arcturus1

Several vulnerabilities have been discovered in OpenJPEG, a JPEG 2000 image library, that may lead to denial of service via application crash or high memory consumption, possible code execution through heap buffer overflows, information disclosure.

CVEs:

• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1447
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6045
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6052
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6053
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6887