You are here
Home > Preporuke > Sigurnosni nedostatak programske biblioteke openjpeg2

Sigurnosni nedostatak programske biblioteke openjpeg2

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2020-12-10 01:13:07.368381

Name : openjpeg2
Product : Fedora 33
Version : 2.3.1
Release : 8.fc33
Summary : C-Library for JPEG 2000
Description :
The OpenJPEG library is an open-source JPEG 2000 library developed in order to
promote the use of JPEG 2000.

This package contains
* JPEG 2000 codec compliant with the Part 1 of the standard (Class-1 Profile-1
* JP2 (JPEG 2000 standard Part 2 – Handling of JP2 boxes and extended multiple
component transforms for multispectral and hyperspectral imagery)

Update Information:

Backport patch for CVE-2020-27814.

* Sat Nov 28 2020 Sandro Mani <> – 2.3.1-8
– Backport patch for CVE-2020-27814

[ 1 ] Bug #1902000 – CVE-2020-27814 openjpeg2: openjpeg: Heap-buffer-overflow in lib/openjp2/mqc.c could result in DoS [fedora-all]
[ 2 ] Bug #1902001 – CVE-2020-27814 mingw-openjpeg2: openjpeg: Heap-buffer-overflow in lib/openjp2/mqc.c could result in DoS [fedora-all]

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2020-9cd524eeca’ at the command
line. For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list —
To unsubscribe send an email to
Fedora Code of Conduct:
List Guidelines:
List Archives:

AutorDona Šeruga
Cert idNCERT-REF-2020-12-0001-ADV
More in Preporuke
Sigurnosni nedostatak programskog paketa matrix synapse

Otkriven je sigurnosni nedostatak u programskom paketu matrix synapse za operacijski sustav Fedora. Otkriveni nedostatak potencijalnim napadačima omogućuje izazivanje DoS...