Skip to navigation

Security Advisory Important: openjpeg security update

Advisory: RHSA-2012:1068-1
Type: Security Advisory
Severity: Important
Issued on: 2012-07-11
Last updated on: 2012-07-11
Affected Products: Red Hat Enterprise Linux Desktop (v. 6)
Red Hat Enterprise Linux HPC Node (v. 6)
Red Hat Enterprise Linux Server (v. 6)
Red Hat Enterprise Linux Server EUS (v. 6.3.z)
Red Hat Enterprise Linux Workstation (v. 6)
CVEs (cve.mitre.org): CVE-2009-5030
CVE-2012-3358

Details

Updated openjpeg packages that fix two security issues are now available
for Red Hat Enterprise Linux 6.

The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.

OpenJPEG is an open source library for reading and writing image files in
JPEG 2000 format.

An input validation flaw, leading to a heap-based buffer overflow, was
found in the way OpenJPEG handled the tile number and size in an image tile
header. A remote attacker could provide a specially-crafted image file
that, when decoded using an application linked against OpenJPEG, would
cause the application to crash or, potentially, execute arbitrary code with
the privileges of the user running the application. (CVE-2012-3358)

OpenJPEG allocated insufficient memory when encoding JPEG 2000 files from
input images that have certain color depths. A remote attacker could
provide a specially-crafted image file that, when opened in an application
linked against OpenJPEG (such as image_to_j2k), would cause the application
to crash or, potentially, execute arbitrary code with the privileges of the
user running the application. (CVE-2009-5030)

Users of OpenJPEG should upgrade to these updated packages, which contain
patches to correct these issues. All running applications using OpenJPEG
must be restarted for the update to take effect.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258

Updated packages

Red Hat Enterprise Linux Desktop (v. 6)

SRPMS:
openjpeg-1.3-8.el6_3.src.rpm
File outdated by:  RHSA-2013:1850
    MD5: b1992e8d46287c3315942fd8d2d706fd
SHA-256: 02df75bbd5808227c01e17611a0dc00a7c1e90d26891e2afeca22c336c16a669
 
IA-32:
openjpeg-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 0a8696f435ebbfc5c25990b8f5ecc98c
SHA-256: b948ea7f254ac792f33a4e6bafe8decea9b471b2dd0215137a1ce118b4a58119
openjpeg-debuginfo-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 69395730d60146e7fcfaedfca88c4102
SHA-256: 1cffc2fbab409f27ccf08a1ab33e6640a31a8cc2aae9053fdb187890fa0beca7
openjpeg-devel-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 213dfa30cff178e0943c4fb2345b7dbe
SHA-256: 53257dc98f01dbc668ee5db7759189b8df4f923c8a9de9e0454e9c9eb964ed0f
openjpeg-libs-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 1148f720eb1f4e3a565e3d50bfaa424e
SHA-256: 8710f7d8fb13b087694fe31c7a5e92f9dafb9531a350701b710b0caab6e3da20
 
x86_64:
openjpeg-1.3-8.el6_3.x86_64.rpm
File outdated by:  RHSA-2013:1850
    MD5: 9c834b52c1bfa2f3c2125fe6ab8c9aa8
SHA-256: 5fd6c9c41eb8b2efedfb084a908a3480c6cac4537c861da4009b96141ad35af5
openjpeg-debuginfo-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 69395730d60146e7fcfaedfca88c4102
SHA-256: 1cffc2fbab409f27ccf08a1ab33e6640a31a8cc2aae9053fdb187890fa0beca7
openjpeg-debuginfo-1.3-8.el6_3.x86_64.rpm
File outdated by:  RHSA-2013:1850
    MD5: d2bb72cda176ef83ad8ff7ee55d091e2
SHA-256: 5c9b39437b9029d24f720f6affcab26d94986a82f1f14adc83410e7d513193e2
openjpeg-devel-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 213dfa30cff178e0943c4fb2345b7dbe
SHA-256: 53257dc98f01dbc668ee5db7759189b8df4f923c8a9de9e0454e9c9eb964ed0f
openjpeg-devel-1.3-8.el6_3.x86_64.rpm
File outdated by:  RHSA-2013:1850
    MD5: 930db08f026b57979005bfddaa59ad53
SHA-256: 677964bae35542b69cfec54726f1cdad13111b7f1c50c1c62711072a09dad2dc
openjpeg-libs-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 1148f720eb1f4e3a565e3d50bfaa424e
SHA-256: 8710f7d8fb13b087694fe31c7a5e92f9dafb9531a350701b710b0caab6e3da20
openjpeg-libs-1.3-8.el6_3.x86_64.rpm
File outdated by:  RHSA-2013:1850
    MD5: 57afc134a1460dbc2d8256328a635cc1
SHA-256: c3913c3145307bc70e074269656b5feb8fcef4cc1422d516b2f40ac5ba1ba811
 
Red Hat Enterprise Linux HPC Node (v. 6)

SRPMS:
openjpeg-1.3-8.el6_3.src.rpm
File outdated by:  RHSA-2013:1850
    MD5: b1992e8d46287c3315942fd8d2d706fd
SHA-256: 02df75bbd5808227c01e17611a0dc00a7c1e90d26891e2afeca22c336c16a669
 
x86_64:
openjpeg-1.3-8.el6_3.x86_64.rpm
File outdated by:  RHSA-2013:1850
    MD5: 9c834b52c1bfa2f3c2125fe6ab8c9aa8
SHA-256: 5fd6c9c41eb8b2efedfb084a908a3480c6cac4537c861da4009b96141ad35af5
openjpeg-debuginfo-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 69395730d60146e7fcfaedfca88c4102
SHA-256: 1cffc2fbab409f27ccf08a1ab33e6640a31a8cc2aae9053fdb187890fa0beca7
openjpeg-debuginfo-1.3-8.el6_3.x86_64.rpm
File outdated by:  RHSA-2013:1850
    MD5: d2bb72cda176ef83ad8ff7ee55d091e2
SHA-256: 5c9b39437b9029d24f720f6affcab26d94986a82f1f14adc83410e7d513193e2
openjpeg-devel-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 213dfa30cff178e0943c4fb2345b7dbe
SHA-256: 53257dc98f01dbc668ee5db7759189b8df4f923c8a9de9e0454e9c9eb964ed0f
openjpeg-devel-1.3-8.el6_3.x86_64.rpm
File outdated by:  RHSA-2013:1850
    MD5: 930db08f026b57979005bfddaa59ad53
SHA-256: 677964bae35542b69cfec54726f1cdad13111b7f1c50c1c62711072a09dad2dc
openjpeg-libs-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 1148f720eb1f4e3a565e3d50bfaa424e
SHA-256: 8710f7d8fb13b087694fe31c7a5e92f9dafb9531a350701b710b0caab6e3da20
openjpeg-libs-1.3-8.el6_3.x86_64.rpm
File outdated by:  RHSA-2013:1850
    MD5: 57afc134a1460dbc2d8256328a635cc1
SHA-256: c3913c3145307bc70e074269656b5feb8fcef4cc1422d516b2f40ac5ba1ba811
 
Red Hat Enterprise Linux Server (v. 6)

SRPMS:
openjpeg-1.3-8.el6_3.src.rpm
File outdated by:  RHSA-2013:1850
    MD5: b1992e8d46287c3315942fd8d2d706fd
SHA-256: 02df75bbd5808227c01e17611a0dc00a7c1e90d26891e2afeca22c336c16a669
 
IA-32:
openjpeg-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 0a8696f435ebbfc5c25990b8f5ecc98c
SHA-256: b948ea7f254ac792f33a4e6bafe8decea9b471b2dd0215137a1ce118b4a58119
openjpeg-debuginfo-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 69395730d60146e7fcfaedfca88c4102
SHA-256: 1cffc2fbab409f27ccf08a1ab33e6640a31a8cc2aae9053fdb187890fa0beca7
openjpeg-devel-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 213dfa30cff178e0943c4fb2345b7dbe
SHA-256: 53257dc98f01dbc668ee5db7759189b8df4f923c8a9de9e0454e9c9eb964ed0f
openjpeg-libs-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 1148f720eb1f4e3a565e3d50bfaa424e
SHA-256: 8710f7d8fb13b087694fe31c7a5e92f9dafb9531a350701b710b0caab6e3da20
 
PPC:
openjpeg-1.3-8.el6_3.ppc64.rpm
File outdated by:  RHSA-2013:1850
    MD5: 1ce80768a0044b3000a44358dad8906c
SHA-256: 0d5406f6c50efcac879bf9abcf5c5d6ea0a45c078ae1fefed512d94b790b2eaf
openjpeg-debuginfo-1.3-8.el6_3.ppc.rpm
File outdated by:  RHSA-2013:1850
    MD5: 66932d147156a160bb2bcd7d26a41f67
SHA-256: 5b79340a62cd05fd3f3932230fffd33d53d76cc74571cdddf0b4df81feae2f32
openjpeg-debuginfo-1.3-8.el6_3.ppc64.rpm
File outdated by:  RHSA-2013:1850
    MD5: eb17be13d7af47b3c021bcd2e3c54bc4
SHA-256: 5165a3927d7aabb17242f7ed78a3ab032ad7ecf80eb0b131170d0f00d2f2a3fc
openjpeg-devel-1.3-8.el6_3.ppc.rpm
File outdated by:  RHSA-2013:1850
    MD5: 1ba3e9425f3965059be7aac65075e7f7
SHA-256: 91515647136a704fd8c83ca37857995d216b6687c91fecf64b8cbfe30c8f0e40
openjpeg-devel-1.3-8.el6_3.ppc64.rpm
File outdated by:  RHSA-2013:1850
    MD5: 545674be4f0635e2c049ebead5935be3
SHA-256: fcdcc484f557e698882ddb73e85d5636b98ba36acdb9114da6d64aeeb1f79174
openjpeg-libs-1.3-8.el6_3.ppc.rpm
File outdated by:  RHSA-2013:1850
    MD5: db01dbc27212d217a9ec2ce5b8e0594d
SHA-256: 245ac75fd85eb83bf3a3a25d361a63c7d5e16cdd71a18095e246311fdc3a4670
openjpeg-libs-1.3-8.el6_3.ppc64.rpm
File outdated by:  RHSA-2013:1850
    MD5: ca4d880c0f18ac593b0357629077e368
SHA-256: ef105139a74091684a9d236d0c2b22f7b437834b5c340187010cf507e7b562a0
 
s390x:
openjpeg-1.3-8.el6_3.s390x.rpm
File outdated by:  RHSA-2013:1850
    MD5: bff3952a6ff55688a53a61859e71b903
SHA-256: 1abc637d60b56896e7f65f0c1b631c1094fa586b9fcb04c2665389beedc9d335
openjpeg-debuginfo-1.3-8.el6_3.s390.rpm
File outdated by:  RHSA-2013:1850
    MD5: 41e7460d23bdfb0b135a4ce5efc4a8ee
SHA-256: d6a29ad8e7462b61f3a66398e266f1f406fa5b4e500f49aa375ed8edb98ecc9b
openjpeg-debuginfo-1.3-8.el6_3.s390x.rpm
File outdated by:  RHSA-2013:1850
    MD5: f1bf1bd909c396e840361946e3bc4341
SHA-256: e92664fe25bb0089e330a85ce9d5bb58664476f6af2469a68ec6ecaf0ca1a173
openjpeg-devel-1.3-8.el6_3.s390.rpm
File outdated by:  RHSA-2013:1850
    MD5: 424903f074b3422151edd167a1b34a46
SHA-256: 7fd7243df1d23f924b15792950bbf76085edfba0cb9ad315a87a9adeff418d3f
openjpeg-devel-1.3-8.el6_3.s390x.rpm
File outdated by:  RHSA-2013:1850
    MD5: c31f8a878a2cc687f3bd65c500e24763
SHA-256: 300a08fe702cdbe43541fc7213bbc0e82845355614236dff7d6ff6ab701b3fc2
openjpeg-libs-1.3-8.el6_3.s390.rpm
File outdated by:  RHSA-2013:1850
    MD5: d6eb65cd449d88090909a034f7e0e188
SHA-256: 1920341f7ce1b8929f0e58733bdb6e3e8a0305863830740027149a8c98fe5f74
openjpeg-libs-1.3-8.el6_3.s390x.rpm
File outdated by:  RHSA-2013:1850
    MD5: abfe589e7d3765183d7b2c32f8252055
SHA-256: ef3520dcf05ba3f2a2c7f529ceef563b038474e687046d96ff3b78646d7c4733
 
x86_64:
openjpeg-1.3-8.el6_3.x86_64.rpm
File outdated by:  RHSA-2013:1850
    MD5: 9c834b52c1bfa2f3c2125fe6ab8c9aa8
SHA-256: 5fd6c9c41eb8b2efedfb084a908a3480c6cac4537c861da4009b96141ad35af5
openjpeg-debuginfo-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 69395730d60146e7fcfaedfca88c4102
SHA-256: 1cffc2fbab409f27ccf08a1ab33e6640a31a8cc2aae9053fdb187890fa0beca7
openjpeg-debuginfo-1.3-8.el6_3.x86_64.rpm
File outdated by:  RHSA-2013:1850
    MD5: d2bb72cda176ef83ad8ff7ee55d091e2
SHA-256: 5c9b39437b9029d24f720f6affcab26d94986a82f1f14adc83410e7d513193e2
openjpeg-devel-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 213dfa30cff178e0943c4fb2345b7dbe
SHA-256: 53257dc98f01dbc668ee5db7759189b8df4f923c8a9de9e0454e9c9eb964ed0f
openjpeg-devel-1.3-8.el6_3.x86_64.rpm
File outdated by:  RHSA-2013:1850
    MD5: 930db08f026b57979005bfddaa59ad53
SHA-256: 677964bae35542b69cfec54726f1cdad13111b7f1c50c1c62711072a09dad2dc
openjpeg-libs-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 1148f720eb1f4e3a565e3d50bfaa424e
SHA-256: 8710f7d8fb13b087694fe31c7a5e92f9dafb9531a350701b710b0caab6e3da20
openjpeg-libs-1.3-8.el6_3.x86_64.rpm
File outdated by:  RHSA-2013:1850
    MD5: 57afc134a1460dbc2d8256328a635cc1
SHA-256: c3913c3145307bc70e074269656b5feb8fcef4cc1422d516b2f40ac5ba1ba811
 
Red Hat Enterprise Linux Server EUS (v. 6.3.z)

SRPMS:
openjpeg-1.3-8.el6_3.src.rpm
File outdated by:  RHSA-2013:1850
    MD5: b1992e8d46287c3315942fd8d2d706fd
SHA-256: 02df75bbd5808227c01e17611a0dc00a7c1e90d26891e2afeca22c336c16a669
 
IA-32:
openjpeg-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2012:1283
    MD5: 0a8696f435ebbfc5c25990b8f5ecc98c
SHA-256: b948ea7f254ac792f33a4e6bafe8decea9b471b2dd0215137a1ce118b4a58119
openjpeg-debuginfo-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2012:1283
    MD5: 69395730d60146e7fcfaedfca88c4102
SHA-256: 1cffc2fbab409f27ccf08a1ab33e6640a31a8cc2aae9053fdb187890fa0beca7
openjpeg-devel-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2012:1283
    MD5: 213dfa30cff178e0943c4fb2345b7dbe
SHA-256: 53257dc98f01dbc668ee5db7759189b8df4f923c8a9de9e0454e9c9eb964ed0f
openjpeg-libs-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2012:1283
    MD5: 1148f720eb1f4e3a565e3d50bfaa424e
SHA-256: 8710f7d8fb13b087694fe31c7a5e92f9dafb9531a350701b710b0caab6e3da20
 
PPC:
openjpeg-1.3-8.el6_3.ppc64.rpm
File outdated by:  RHSA-2012:1283
    MD5: 1ce80768a0044b3000a44358dad8906c
SHA-256: 0d5406f6c50efcac879bf9abcf5c5d6ea0a45c078ae1fefed512d94b790b2eaf
openjpeg-debuginfo-1.3-8.el6_3.ppc.rpm
File outdated by:  RHSA-2012:1283
    MD5: 66932d147156a160bb2bcd7d26a41f67
SHA-256: 5b79340a62cd05fd3f3932230fffd33d53d76cc74571cdddf0b4df81feae2f32
openjpeg-debuginfo-1.3-8.el6_3.ppc64.rpm
File outdated by:  RHSA-2012:1283
    MD5: eb17be13d7af47b3c021bcd2e3c54bc4
SHA-256: 5165a3927d7aabb17242f7ed78a3ab032ad7ecf80eb0b131170d0f00d2f2a3fc
openjpeg-devel-1.3-8.el6_3.ppc.rpm
File outdated by:  RHSA-2012:1283
    MD5: 1ba3e9425f3965059be7aac65075e7f7
SHA-256: 91515647136a704fd8c83ca37857995d216b6687c91fecf64b8cbfe30c8f0e40
openjpeg-devel-1.3-8.el6_3.ppc64.rpm
File outdated by:  RHSA-2012:1283
    MD5: 545674be4f0635e2c049ebead5935be3
SHA-256: fcdcc484f557e698882ddb73e85d5636b98ba36acdb9114da6d64aeeb1f79174
openjpeg-libs-1.3-8.el6_3.ppc.rpm
File outdated by:  RHSA-2012:1283
    MD5: db01dbc27212d217a9ec2ce5b8e0594d
SHA-256: 245ac75fd85eb83bf3a3a25d361a63c7d5e16cdd71a18095e246311fdc3a4670
openjpeg-libs-1.3-8.el6_3.ppc64.rpm
File outdated by:  RHSA-2012:1283
    MD5: ca4d880c0f18ac593b0357629077e368
SHA-256: ef105139a74091684a9d236d0c2b22f7b437834b5c340187010cf507e7b562a0
 
s390x:
openjpeg-1.3-8.el6_3.s390x.rpm
File outdated by:  RHSA-2012:1283
    MD5: bff3952a6ff55688a53a61859e71b903
SHA-256: 1abc637d60b56896e7f65f0c1b631c1094fa586b9fcb04c2665389beedc9d335
openjpeg-debuginfo-1.3-8.el6_3.s390.rpm
File outdated by:  RHSA-2012:1283
    MD5: 41e7460d23bdfb0b135a4ce5efc4a8ee
SHA-256: d6a29ad8e7462b61f3a66398e266f1f406fa5b4e500f49aa375ed8edb98ecc9b
openjpeg-debuginfo-1.3-8.el6_3.s390x.rpm
File outdated by:  RHSA-2012:1283
    MD5: f1bf1bd909c396e840361946e3bc4341
SHA-256: e92664fe25bb0089e330a85ce9d5bb58664476f6af2469a68ec6ecaf0ca1a173
openjpeg-devel-1.3-8.el6_3.s390.rpm
File outdated by:  RHSA-2012:1283
    MD5: 424903f074b3422151edd167a1b34a46
SHA-256: 7fd7243df1d23f924b15792950bbf76085edfba0cb9ad315a87a9adeff418d3f
openjpeg-devel-1.3-8.el6_3.s390x.rpm
File outdated by:  RHSA-2012:1283
    MD5: c31f8a878a2cc687f3bd65c500e24763
SHA-256: 300a08fe702cdbe43541fc7213bbc0e82845355614236dff7d6ff6ab701b3fc2
openjpeg-libs-1.3-8.el6_3.s390.rpm
File outdated by:  RHSA-2012:1283
    MD5: d6eb65cd449d88090909a034f7e0e188
SHA-256: 1920341f7ce1b8929f0e58733bdb6e3e8a0305863830740027149a8c98fe5f74
openjpeg-libs-1.3-8.el6_3.s390x.rpm
File outdated by:  RHSA-2012:1283
    MD5: abfe589e7d3765183d7b2c32f8252055
SHA-256: ef3520dcf05ba3f2a2c7f529ceef563b038474e687046d96ff3b78646d7c4733
 
x86_64:
openjpeg-1.3-8.el6_3.x86_64.rpm
File outdated by:  RHSA-2012:1283
    MD5: 9c834b52c1bfa2f3c2125fe6ab8c9aa8
SHA-256: 5fd6c9c41eb8b2efedfb084a908a3480c6cac4537c861da4009b96141ad35af5
openjpeg-debuginfo-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2012:1283
    MD5: 69395730d60146e7fcfaedfca88c4102
SHA-256: 1cffc2fbab409f27ccf08a1ab33e6640a31a8cc2aae9053fdb187890fa0beca7
openjpeg-debuginfo-1.3-8.el6_3.x86_64.rpm
File outdated by:  RHSA-2012:1283
    MD5: d2bb72cda176ef83ad8ff7ee55d091e2
SHA-256: 5c9b39437b9029d24f720f6affcab26d94986a82f1f14adc83410e7d513193e2
openjpeg-devel-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2012:1283
    MD5: 213dfa30cff178e0943c4fb2345b7dbe
SHA-256: 53257dc98f01dbc668ee5db7759189b8df4f923c8a9de9e0454e9c9eb964ed0f
openjpeg-devel-1.3-8.el6_3.x86_64.rpm
File outdated by:  RHSA-2012:1283
    MD5: 930db08f026b57979005bfddaa59ad53
SHA-256: 677964bae35542b69cfec54726f1cdad13111b7f1c50c1c62711072a09dad2dc
openjpeg-libs-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2012:1283
    MD5: 1148f720eb1f4e3a565e3d50bfaa424e
SHA-256: 8710f7d8fb13b087694fe31c7a5e92f9dafb9531a350701b710b0caab6e3da20
openjpeg-libs-1.3-8.el6_3.x86_64.rpm
File outdated by:  RHSA-2012:1283
    MD5: 57afc134a1460dbc2d8256328a635cc1
SHA-256: c3913c3145307bc70e074269656b5feb8fcef4cc1422d516b2f40ac5ba1ba811
 
Red Hat Enterprise Linux Workstation (v. 6)

SRPMS:
openjpeg-1.3-8.el6_3.src.rpm
File outdated by:  RHSA-2013:1850
    MD5: b1992e8d46287c3315942fd8d2d706fd
SHA-256: 02df75bbd5808227c01e17611a0dc00a7c1e90d26891e2afeca22c336c16a669
 
IA-32:
openjpeg-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 0a8696f435ebbfc5c25990b8f5ecc98c
SHA-256: b948ea7f254ac792f33a4e6bafe8decea9b471b2dd0215137a1ce118b4a58119
openjpeg-debuginfo-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 69395730d60146e7fcfaedfca88c4102
SHA-256: 1cffc2fbab409f27ccf08a1ab33e6640a31a8cc2aae9053fdb187890fa0beca7
openjpeg-devel-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 213dfa30cff178e0943c4fb2345b7dbe
SHA-256: 53257dc98f01dbc668ee5db7759189b8df4f923c8a9de9e0454e9c9eb964ed0f
openjpeg-libs-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 1148f720eb1f4e3a565e3d50bfaa424e
SHA-256: 8710f7d8fb13b087694fe31c7a5e92f9dafb9531a350701b710b0caab6e3da20
 
x86_64:
openjpeg-1.3-8.el6_3.x86_64.rpm
File outdated by:  RHSA-2013:1850
    MD5: 9c834b52c1bfa2f3c2125fe6ab8c9aa8
SHA-256: 5fd6c9c41eb8b2efedfb084a908a3480c6cac4537c861da4009b96141ad35af5
openjpeg-debuginfo-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 69395730d60146e7fcfaedfca88c4102
SHA-256: 1cffc2fbab409f27ccf08a1ab33e6640a31a8cc2aae9053fdb187890fa0beca7
openjpeg-debuginfo-1.3-8.el6_3.x86_64.rpm
File outdated by:  RHSA-2013:1850
    MD5: d2bb72cda176ef83ad8ff7ee55d091e2
SHA-256: 5c9b39437b9029d24f720f6affcab26d94986a82f1f14adc83410e7d513193e2
openjpeg-devel-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 213dfa30cff178e0943c4fb2345b7dbe
SHA-256: 53257dc98f01dbc668ee5db7759189b8df4f923c8a9de9e0454e9c9eb964ed0f
openjpeg-devel-1.3-8.el6_3.x86_64.rpm
File outdated by:  RHSA-2013:1850
    MD5: 930db08f026b57979005bfddaa59ad53
SHA-256: 677964bae35542b69cfec54726f1cdad13111b7f1c50c1c62711072a09dad2dc
openjpeg-libs-1.3-8.el6_3.i686.rpm
File outdated by:  RHSA-2013:1850
    MD5: 1148f720eb1f4e3a565e3d50bfaa424e
SHA-256: 8710f7d8fb13b087694fe31c7a5e92f9dafb9531a350701b710b0caab6e3da20
openjpeg-libs-1.3-8.el6_3.x86_64.rpm
File outdated by:  RHSA-2013:1850
    MD5: 57afc134a1460dbc2d8256328a635cc1
SHA-256: c3913c3145307bc70e074269656b5feb8fcef4cc1422d516b2f40ac5ba1ba811
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

812317 - CVE-2009-5030 openjpeg: Heap memory corruption leading to invalid free by processing certain Gray16 TIFF images
835767 - CVE-2012-3358 openjpeg: heap-based buffer overflow when processing JPEG2000 image files


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/