Test Kennung:	1.3.6.1.4.1.25623.1.0.891851
Kategorie:	Debian Local Security Checks
Titel:	Debian LTS: Security Advisory for openjpeg2 (DLA-1851-1)
Zusammenfassung:	The remote host is missing an update for the 'openjpeg2'; package(s) announced via the DLA-1851-1 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'openjpeg2' package(s) announced via the DLA-1851-1 advisory. Vulnerability Insight: Two security vulnerabilities were discovered in openjpeg2, a JPEG 2000 image library. CVE-2016-9112 A floating point exception or divide by zero in the function opj_pi_next_cprl may lead to a denial-of-service. CVE-2018-20847 An improper computation of values in the function opj_get_encoding_parameters can lead to an integer overflow. This issue was partly fixed by the patch for CVE-2015-1239. Affected Software/OS: 'openjpeg2' package(s) on Debian Linux. Solution: For Debian 8 'Jessie', these problems have been fixed in version 2.1.0-2+deb8u7. We recommend that you upgrade your openjpeg2 packages. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2015-1239 https://lists.debian.org/debian-lts-announce/2018/07/msg00025.html Common Vulnerability Exposure (CVE) ID: CVE-2016-9112 BugTraq ID: 93978 http://www.securityfocus.com/bid/93978 https://security.gentoo.org/glsa/201710-26 https://github.com/uclouvain/openjpeg/issues/855 https://www.oracle.com/security-alerts/cpujul2020.html https://lists.debian.org/debian-lts-announce/2019/07/msg00010.html
Copyright	Copyright (C) 2019 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.