Ubuntu
openjpeg2 package

openjpeg2 2.3.1-1ubuntu5 source package in Ubuntu

Changelog

openjpeg2 (2.3.1-1ubuntu5) hirsute; urgency=medium

  * SECURITY UPDATE: use-after-free via directory
    - debian/patches/CVE-2020-15389.patch: fix double-free on input
      directory with mix of valid and invalid images in
      src/bin/jp2/opj_decompress.c.
    - CVE-2020-15389
  * SECURITY UPDATE: heap-buffer-overflow
    - debian/patches/CVE-2020-27814-1.patch: grow buffer size in
      src/lib/openjp2/tcd.c.
    - debian/patches/CVE-2020-27814-2.patch: grow it again
    - debian/patches/CVE-2020-27814-3.patch: and some more
    - debian/patches/CVE-2020-27814-4.patch: bigger, BIGGER!!!
    - CVE-2020-27814
  * SECURITY UPDATE: heap-buffer-overflow write
    - debian/patches/CVE-2020-27823.patch: fix wrong computation in
      src/bin/jp2/convertpng.c.
    - CVE-2020-27823
  * SECURITY UPDATE: global-buffer-overflow
    - debian/patches/CVE-2020-27824.patch: avoid global buffer overflow on
      irreversible conversion when too many decomposition levels are
      specified in src/lib/openjp2/dwt.c.
    - CVE-2020-27824
  * SECURITY UPDATE: out-of-bounds read
    - debian/patches/CVE-2020-27841.patch: add extra checks to
      src/lib/openjp2/pi.c, src/lib/openjp2/pi.h, src/lib/openjp2/t2.c.
    - CVE-2020-27841
  * SECURITY UPDATE: null pointer dereference
    - debian/patches/CVE-2020-27842.patch: add check to
      src/lib/openjp2/t2.c.
    - CVE-2020-27842
  * SECURITY UPDATE: out-of-bounds read
    - debian/patches/CVE-2020-27843.patch: add check to
      src/lib/openjp2/t2.c.
    - CVE-2020-27843
  * SECURITY UPDATE: out-of-bounds read
    - debian/patches/CVE-2020-27845.patch: add extra checks to
      src/lib/openjp2/pi.c.
    - CVE-2020-27845

 -- Marc Deslauriers <email address hidden>  Wed, 06 Jan 2021 09:44:46 -0500

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Hirsute
Original maintainer:
Ubuntu Developers
Architectures:
any all
Section:
misc
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
openjpeg2_2.3.1.orig.tar.xz 1.3 MiB 69d39843a25f1a482e1b568fd042eb34837ffc0d708ab7717edeb52e592ecbeb
openjpeg2_2.3.1-1ubuntu5.debian.tar.xz 24.6 KiB f4fafea7bff838d4f7dc6f8081ab4d93fdc36064b3c4bbcd8964e1f7c89b76cd
openjpeg2_2.3.1-1ubuntu5.dsc 2.8 KiB ebec89144dfce804148d3ebad3fd44f4f04fb00af01f6797744ceb331cff851c

Available diffs

View changes file

Binary packages built by this source

libopenjp2-7: No summary available for libopenjp2-7 in ubuntu impish.

No description available for libopenjp2-7 in ubuntu impish.

libopenjp2-7-dbgsym: No summary available for libopenjp2-7-dbgsym in ubuntu hirsute.

No description available for libopenjp2-7-dbgsym in ubuntu hirsute.

libopenjp2-7-dev: development files for OpenJPEG, a JPEG 2000 image library

 OpenJPEG is a library for handling the JPEG 2000 image compression format.
 JPEG 2000 is a wavelet-based image compression standard and permits progressive
 transmission by pixel and resolution accuracy for progressive downloads of an
 encoded image. It supports lossless and lossy compression, supports higher
 compression than JPEG 1991, and has resilience to errors in the image.
 .
 This package contains the development files for openjpeg 2.x

libopenjp2-tools: No summary available for libopenjp2-tools in ubuntu impish.

No description available for libopenjp2-tools in ubuntu impish.

libopenjp2-tools-dbgsym: No summary available for libopenjp2-tools-dbgsym in ubuntu hirsute.

No description available for libopenjp2-tools-dbgsym in ubuntu hirsute.

libopenjp3d-tools: No summary available for libopenjp3d-tools in ubuntu hirsute.

No description available for libopenjp3d-tools in ubuntu hirsute.

libopenjp3d-tools-dbgsym: No summary available for libopenjp3d-tools-dbgsym in ubuntu hirsute.

No description available for libopenjp3d-tools-dbgsym in ubuntu hirsute.

libopenjp3d7: JP3D (JPEG 2000 / Part 10) image compression/decompression library

 OpenJPEG is a library for handling the JPEG 2000 image compression format.
 JPEG 2000 is a wavelet-based image compression standard and permits progressive
 transmission by pixel and resolution accuracy for progressive downloads of an
 encoded image. It supports lossless and lossy compression, supports higher
 compression than JPEG 1991, and has resilience to errors in the image.
 .
 This is an implementation of the JPEG 2000 (JP3D) volumetric imaging (Part-10)

libopenjp3d7-dbgsym: debug symbols for libopenjp3d7
libopenjpip-dec-server: No summary available for libopenjpip-dec-server in ubuntu hirsute.

No description available for libopenjpip-dec-server in ubuntu hirsute.

libopenjpip-dec-server-dbgsym: No summary available for libopenjpip-dec-server-dbgsym in ubuntu impish.

No description available for libopenjpip-dec-server-dbgsym in ubuntu impish.

libopenjpip-server: No summary available for libopenjpip-server in ubuntu impish.

No description available for libopenjpip-server in ubuntu impish.

libopenjpip-server-dbgsym: debug symbols for libopenjpip-server
libopenjpip-viewer: JPEG 2000 java based viewer for advanced remote JPIP access

 Java based client to view remote JPEG 2000 using JPIP protocol.
 This is a simple java viewer to allow:
 .
  - Scale up request: Enlarge the window
  - ROI request: Select a region by mouse click and drag, then click inside the
    red frame of the selected region
  - Annotate image with ROI information in XML metadata: Click button "Region
    Of Interest"
  - Open a new window presenting an aligned image with a locally stored image:
    Click button "Image Registration" (Under Construction)

libopenjpip7: No summary available for libopenjpip7 in ubuntu impish.

No description available for libopenjpip7 in ubuntu impish.

libopenjpip7-dbgsym: No summary available for libopenjpip7-dbgsym in ubuntu impish.

No description available for libopenjpip7-dbgsym in ubuntu impish.