Skip to navigation

Security Advisory Important: openjpeg security update

Advisory: RHSA-2013:1850-2
Type: Security Advisory
Severity: Important
Issued on: 2013-12-17
Last updated on: 2013-12-17
Affected Products: Red Hat Enterprise Linux Desktop (v. 6)
Red Hat Enterprise Linux HPC Node (v. 6)
Red Hat Enterprise Linux Server (v. 6)
Red Hat Enterprise Linux Server AUS (v. 6.5)
Red Hat Enterprise Linux Server EUS (v. 6.5.z)
Red Hat Enterprise Linux Workstation (v. 6)
CVEs (cve.mitre.org): CVE-2013-1447
CVE-2013-6045
CVE-2013-6052
CVE-2013-6054

Details

Updated openjpeg packages that fix multiple security issues are now
available for Red Hat Enterprise Linux 6.

The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.

OpenJPEG is an open source library for reading and writing image files in
JPEG 2000 format.

Multiple heap-based buffer overflow flaws were found in OpenJPEG.
An attacker could create a specially crafted OpenJPEG image that, when
opened, could cause an application using openjpeg to crash or, possibly,
execute arbitrary code with the privileges of the user running the
application. (CVE-2013-6045, CVE-2013-6054)

Multiple denial of service flaws were found in OpenJPEG. An attacker could
create a specially crafted OpenJPEG image that, when opened, could cause an
application using openjpeg to crash (CVE-2013-1447, CVE-2013-6052)

Red Hat would like to thank Raphael Geissert for reporting these issues.

Users of OpenJPEG are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. All running
applications using OpenJPEG must be restarted for the update to take
effect.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the
Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258

Updated packages

Red Hat Enterprise Linux Desktop (v. 6)

SRPMS:
openjpeg-1.3-10.el6_5.src.rpm     MD5: 63e1b9a2dcae980e8ef443869dd88bd2
SHA-256: 802587e583410b7d222c9a31178c15a5dcb17d6ec80d4736e4b49d4ff5df9b6c
 
IA-32:
openjpeg-1.3-10.el6_5.i686.rpm     MD5: d3fad5d2b0903441536de0d93d1c722f
SHA-256: bca4c4c7d0ece708f79538893a96bc1359b3d91166dfc40b3f5edcf905424a61
openjpeg-debuginfo-1.3-10.el6_5.i686.rpm     MD5: 5c72fe6c56c683319ed2b51bd7a4f34d
SHA-256: 9b16fc615c490b3e7bf7f2a3a57c138f51daf472b5c4b373b772e813d9e00ee7
openjpeg-devel-1.3-10.el6_5.i686.rpm     MD5: 105f8aeb31d4b7980c96523eb0f99799
SHA-256: d4bb4425370bebb192b3515082ef88238ac9197cc4de46fb2eb0ca00b30c5d45
openjpeg-libs-1.3-10.el6_5.i686.rpm     MD5: 697e581d900e7a9fa8bb8fc170c679e0
SHA-256: 0f6bbffcbfdee88b33547ce1a2cbed9743968166be24953675f6ff5e49a57608
 
x86_64:
openjpeg-1.3-10.el6_5.x86_64.rpm     MD5: 56ae6bcb226c3a7dff1c02b8c4b539aa
SHA-256: ecee54e09753dbb2ef4207c1216542892238f7543088e762ff79c08e1b5bdd37
openjpeg-debuginfo-1.3-10.el6_5.i686.rpm     MD5: 5c72fe6c56c683319ed2b51bd7a4f34d
SHA-256: 9b16fc615c490b3e7bf7f2a3a57c138f51daf472b5c4b373b772e813d9e00ee7
openjpeg-debuginfo-1.3-10.el6_5.x86_64.rpm     MD5: 3429760676e4294970a5f4d59415196b
SHA-256: c0b601dd3baf4feee9ce6db489cf325a48bfe0b0f10b2f6cf9bec8f872e4a5d6
openjpeg-devel-1.3-10.el6_5.i686.rpm     MD5: 105f8aeb31d4b7980c96523eb0f99799
SHA-256: d4bb4425370bebb192b3515082ef88238ac9197cc4de46fb2eb0ca00b30c5d45
openjpeg-devel-1.3-10.el6_5.x86_64.rpm     MD5: 25e8e1987e42255188b395d81e3786d1
SHA-256: f28c862a9956e53bbcf24878dea13d1d99b3a2613da958a76eef30ecf648b15e
openjpeg-libs-1.3-10.el6_5.i686.rpm     MD5: 697e581d900e7a9fa8bb8fc170c679e0
SHA-256: 0f6bbffcbfdee88b33547ce1a2cbed9743968166be24953675f6ff5e49a57608
openjpeg-libs-1.3-10.el6_5.x86_64.rpm     MD5: ede731ca01b9436bd15fb259d71a7138
SHA-256: 2f5196f87b5a3a78fafa7f38547b250c137d78cb2bc7b4f679d40cfef5a559fc
 
Red Hat Enterprise Linux HPC Node (v. 6)

SRPMS:
openjpeg-1.3-10.el6_5.src.rpm     MD5: 63e1b9a2dcae980e8ef443869dd88bd2
SHA-256: 802587e583410b7d222c9a31178c15a5dcb17d6ec80d4736e4b49d4ff5df9b6c
 
x86_64:
openjpeg-1.3-10.el6_5.x86_64.rpm     MD5: 56ae6bcb226c3a7dff1c02b8c4b539aa
SHA-256: ecee54e09753dbb2ef4207c1216542892238f7543088e762ff79c08e1b5bdd37
openjpeg-debuginfo-1.3-10.el6_5.i686.rpm     MD5: 5c72fe6c56c683319ed2b51bd7a4f34d
SHA-256: 9b16fc615c490b3e7bf7f2a3a57c138f51daf472b5c4b373b772e813d9e00ee7
openjpeg-debuginfo-1.3-10.el6_5.x86_64.rpm     MD5: 3429760676e4294970a5f4d59415196b
SHA-256: c0b601dd3baf4feee9ce6db489cf325a48bfe0b0f10b2f6cf9bec8f872e4a5d6
openjpeg-devel-1.3-10.el6_5.i686.rpm     MD5: 105f8aeb31d4b7980c96523eb0f99799
SHA-256: d4bb4425370bebb192b3515082ef88238ac9197cc4de46fb2eb0ca00b30c5d45
openjpeg-devel-1.3-10.el6_5.x86_64.rpm     MD5: 25e8e1987e42255188b395d81e3786d1
SHA-256: f28c862a9956e53bbcf24878dea13d1d99b3a2613da958a76eef30ecf648b15e
openjpeg-libs-1.3-10.el6_5.i686.rpm     MD5: 697e581d900e7a9fa8bb8fc170c679e0
SHA-256: 0f6bbffcbfdee88b33547ce1a2cbed9743968166be24953675f6ff5e49a57608
openjpeg-libs-1.3-10.el6_5.x86_64.rpm     MD5: ede731ca01b9436bd15fb259d71a7138
SHA-256: 2f5196f87b5a3a78fafa7f38547b250c137d78cb2bc7b4f679d40cfef5a559fc
 
Red Hat Enterprise Linux Server (v. 6)

SRPMS:
openjpeg-1.3-10.el6_5.src.rpm     MD5: 63e1b9a2dcae980e8ef443869dd88bd2
SHA-256: 802587e583410b7d222c9a31178c15a5dcb17d6ec80d4736e4b49d4ff5df9b6c
 
IA-32:
openjpeg-1.3-10.el6_5.i686.rpm     MD5: d3fad5d2b0903441536de0d93d1c722f
SHA-256: bca4c4c7d0ece708f79538893a96bc1359b3d91166dfc40b3f5edcf905424a61
openjpeg-debuginfo-1.3-10.el6_5.i686.rpm     MD5: 5c72fe6c56c683319ed2b51bd7a4f34d
SHA-256: 9b16fc615c490b3e7bf7f2a3a57c138f51daf472b5c4b373b772e813d9e00ee7
openjpeg-devel-1.3-10.el6_5.i686.rpm     MD5: 105f8aeb31d4b7980c96523eb0f99799
SHA-256: d4bb4425370bebb192b3515082ef88238ac9197cc4de46fb2eb0ca00b30c5d45
openjpeg-libs-1.3-10.el6_5.i686.rpm     MD5: 697e581d900e7a9fa8bb8fc170c679e0
SHA-256: 0f6bbffcbfdee88b33547ce1a2cbed9743968166be24953675f6ff5e49a57608
 
PPC:
openjpeg-1.3-10.el6_5.ppc64.rpm     MD5: 3aeb05ccfc39c0dca026e44f5d4ae238
SHA-256: 4dc73ad22fdb6e72a52b851adcca97348eaa6bd66519b003876c93fe06469493
openjpeg-debuginfo-1.3-10.el6_5.ppc.rpm     MD5: a4b2b7af1bf842c366976e75b4991470
SHA-256: 03a6911325c62174b787a814d3000377f64e3768cd85eea232a5d6a8fe639f99
openjpeg-debuginfo-1.3-10.el6_5.ppc64.rpm     MD5: a8458e3b64fcdcc8f5433fa419b7dede
SHA-256: cbd54ac66236f76cc002ca57bfe02e016af7b4e547a09151adbd83e7904f25ae
openjpeg-devel-1.3-10.el6_5.ppc.rpm     MD5: 2b4fee9ee937b8f69bc27c7a5f43ea90
SHA-256: dc2af422ee290e7e5d8e8ef33647c2e5b62b1b738eaf3698295908064091a8ab
openjpeg-devel-1.3-10.el6_5.ppc64.rpm     MD5: 246ea93d862bc2d8e204a0c38df95185
SHA-256: 6716920e43fc74c7e295ebd5579bbdcc99639956bcb7cc8af9c917188047f84d
openjpeg-libs-1.3-10.el6_5.ppc.rpm     MD5: a76d29a7a095ed527b5e35be3c1e6b0b
SHA-256: 60cc370f431201847b625e9af9861ea7f1afc8c6460caf7ec3e9623ead0d9330
openjpeg-libs-1.3-10.el6_5.ppc64.rpm     MD5: 2a40b016c3f0f168e4877f5b6773115a
SHA-256: 5f336c9a6cc4a80068bbefd7385d6af037aea9d54956c0c0e28b016b678f2b28
 
s390x:
openjpeg-1.3-10.el6_5.s390x.rpm     MD5: ac402c302421ca12fb78d3e3b93fd1ac
SHA-256: 7802887b6c1ff9a53fc4043423655a33452a4b90b9e1394566d9edb822cc38d2
openjpeg-debuginfo-1.3-10.el6_5.s390.rpm     MD5: 785eba44b4d120bf2b30705814dcb9a6
SHA-256: ae8322fd479572d05e723773a7f220262ae87e9950020a0e5c646aebfcb61c17
openjpeg-debuginfo-1.3-10.el6_5.s390x.rpm     MD5: 26cadb27836cc62438c55d73f8925902
SHA-256: 5f630768ac15584b0ebabe80349fb273274156221782f1bbbc1480753a8b8432
openjpeg-devel-1.3-10.el6_5.s390.rpm     MD5: 2c7325d9dfbcc439f39f0479cd2c26c3
SHA-256: ebf683e687249c37774f0e8cfc1878bc0ff42dfb0b4d94438cb64fca0a0e38db
openjpeg-devel-1.3-10.el6_5.s390x.rpm     MD5: a0824232ba6a2804eb03b687c27b175d
SHA-256: f832c6f5d17f3f356acbf25afec7054bca00767bc8f46ee9c21fb7c0dc2882c2
openjpeg-libs-1.3-10.el6_5.s390.rpm     MD5: ce4ff88a6924599e3030823a4fbedccd
SHA-256: 5c8e19412264c8c2e470856553c7425e37ff48553d6e261380e168daa20a0cef
openjpeg-libs-1.3-10.el6_5.s390x.rpm     MD5: fc165333f0888d068e4a75bd1b9543e8
SHA-256: 19a88fb3fa2a217c9e7d6fcb5b9c42e08c092d55b10889be6ebbdf0c5724b641
 
x86_64:
openjpeg-1.3-10.el6_5.x86_64.rpm     MD5: 56ae6bcb226c3a7dff1c02b8c4b539aa
SHA-256: ecee54e09753dbb2ef4207c1216542892238f7543088e762ff79c08e1b5bdd37
openjpeg-debuginfo-1.3-10.el6_5.i686.rpm     MD5: 5c72fe6c56c683319ed2b51bd7a4f34d
SHA-256: 9b16fc615c490b3e7bf7f2a3a57c138f51daf472b5c4b373b772e813d9e00ee7
openjpeg-debuginfo-1.3-10.el6_5.x86_64.rpm     MD5: 3429760676e4294970a5f4d59415196b
SHA-256: c0b601dd3baf4feee9ce6db489cf325a48bfe0b0f10b2f6cf9bec8f872e4a5d6
openjpeg-devel-1.3-10.el6_5.i686.rpm     MD5: 105f8aeb31d4b7980c96523eb0f99799
SHA-256: d4bb4425370bebb192b3515082ef88238ac9197cc4de46fb2eb0ca00b30c5d45
openjpeg-devel-1.3-10.el6_5.x86_64.rpm     MD5: 25e8e1987e42255188b395d81e3786d1
SHA-256: f28c862a9956e53bbcf24878dea13d1d99b3a2613da958a76eef30ecf648b15e
openjpeg-libs-1.3-10.el6_5.i686.rpm     MD5: 697e581d900e7a9fa8bb8fc170c679e0
SHA-256: 0f6bbffcbfdee88b33547ce1a2cbed9743968166be24953675f6ff5e49a57608
openjpeg-libs-1.3-10.el6_5.x86_64.rpm     MD5: ede731ca01b9436bd15fb259d71a7138
SHA-256: 2f5196f87b5a3a78fafa7f38547b250c137d78cb2bc7b4f679d40cfef5a559fc
 
Red Hat Enterprise Linux Server AUS (v. 6.5)

SRPMS:
openjpeg-1.3-10.el6_5.src.rpm     MD5: 63e1b9a2dcae980e8ef443869dd88bd2
SHA-256: 802587e583410b7d222c9a31178c15a5dcb17d6ec80d4736e4b49d4ff5df9b6c
 
x86_64:
openjpeg-1.3-10.el6_5.x86_64.rpm     MD5: 56ae6bcb226c3a7dff1c02b8c4b539aa
SHA-256: ecee54e09753dbb2ef4207c1216542892238f7543088e762ff79c08e1b5bdd37
openjpeg-debuginfo-1.3-10.el6_5.i686.rpm     MD5: 5c72fe6c56c683319ed2b51bd7a4f34d
SHA-256: 9b16fc615c490b3e7bf7f2a3a57c138f51daf472b5c4b373b772e813d9e00ee7
openjpeg-debuginfo-1.3-10.el6_5.x86_64.rpm     MD5: 3429760676e4294970a5f4d59415196b
SHA-256: c0b601dd3baf4feee9ce6db489cf325a48bfe0b0f10b2f6cf9bec8f872e4a5d6
openjpeg-devel-1.3-10.el6_5.i686.rpm     MD5: 105f8aeb31d4b7980c96523eb0f99799
SHA-256: d4bb4425370bebb192b3515082ef88238ac9197cc4de46fb2eb0ca00b30c5d45
openjpeg-devel-1.3-10.el6_5.x86_64.rpm     MD5: 25e8e1987e42255188b395d81e3786d1
SHA-256: f28c862a9956e53bbcf24878dea13d1d99b3a2613da958a76eef30ecf648b15e
openjpeg-libs-1.3-10.el6_5.i686.rpm     MD5: 697e581d900e7a9fa8bb8fc170c679e0
SHA-256: 0f6bbffcbfdee88b33547ce1a2cbed9743968166be24953675f6ff5e49a57608
openjpeg-libs-1.3-10.el6_5.x86_64.rpm     MD5: ede731ca01b9436bd15fb259d71a7138
SHA-256: 2f5196f87b5a3a78fafa7f38547b250c137d78cb2bc7b4f679d40cfef5a559fc
 
Red Hat Enterprise Linux Server EUS (v. 6.5.z)

SRPMS:
openjpeg-1.3-10.el6_5.src.rpm     MD5: 63e1b9a2dcae980e8ef443869dd88bd2
SHA-256: 802587e583410b7d222c9a31178c15a5dcb17d6ec80d4736e4b49d4ff5df9b6c
 
IA-32:
openjpeg-1.3-10.el6_5.i686.rpm     MD5: d3fad5d2b0903441536de0d93d1c722f
SHA-256: bca4c4c7d0ece708f79538893a96bc1359b3d91166dfc40b3f5edcf905424a61
openjpeg-debuginfo-1.3-10.el6_5.i686.rpm     MD5: 5c72fe6c56c683319ed2b51bd7a4f34d
SHA-256: 9b16fc615c490b3e7bf7f2a3a57c138f51daf472b5c4b373b772e813d9e00ee7
openjpeg-devel-1.3-10.el6_5.i686.rpm     MD5: 105f8aeb31d4b7980c96523eb0f99799
SHA-256: d4bb4425370bebb192b3515082ef88238ac9197cc4de46fb2eb0ca00b30c5d45
openjpeg-libs-1.3-10.el6_5.i686.rpm     MD5: 697e581d900e7a9fa8bb8fc170c679e0
SHA-256: 0f6bbffcbfdee88b33547ce1a2cbed9743968166be24953675f6ff5e49a57608
 
PPC:
openjpeg-1.3-10.el6_5.ppc64.rpm     MD5: 3aeb05ccfc39c0dca026e44f5d4ae238
SHA-256: 4dc73ad22fdb6e72a52b851adcca97348eaa6bd66519b003876c93fe06469493
openjpeg-debuginfo-1.3-10.el6_5.ppc.rpm     MD5: a4b2b7af1bf842c366976e75b4991470
SHA-256: 03a6911325c62174b787a814d3000377f64e3768cd85eea232a5d6a8fe639f99
openjpeg-debuginfo-1.3-10.el6_5.ppc64.rpm     MD5: a8458e3b64fcdcc8f5433fa419b7dede
SHA-256: cbd54ac66236f76cc002ca57bfe02e016af7b4e547a09151adbd83e7904f25ae
openjpeg-devel-1.3-10.el6_5.ppc.rpm     MD5: 2b4fee9ee937b8f69bc27c7a5f43ea90
SHA-256: dc2af422ee290e7e5d8e8ef33647c2e5b62b1b738eaf3698295908064091a8ab
openjpeg-devel-1.3-10.el6_5.ppc64.rpm     MD5: 246ea93d862bc2d8e204a0c38df95185
SHA-256: 6716920e43fc74c7e295ebd5579bbdcc99639956bcb7cc8af9c917188047f84d
openjpeg-libs-1.3-10.el6_5.ppc.rpm     MD5: a76d29a7a095ed527b5e35be3c1e6b0b
SHA-256: 60cc370f431201847b625e9af9861ea7f1afc8c6460caf7ec3e9623ead0d9330
openjpeg-libs-1.3-10.el6_5.ppc64.rpm     MD5: 2a40b016c3f0f168e4877f5b6773115a
SHA-256: 5f336c9a6cc4a80068bbefd7385d6af037aea9d54956c0c0e28b016b678f2b28
 
s390x:
openjpeg-1.3-10.el6_5.s390x.rpm     MD5: ac402c302421ca12fb78d3e3b93fd1ac
SHA-256: 7802887b6c1ff9a53fc4043423655a33452a4b90b9e1394566d9edb822cc38d2
openjpeg-debuginfo-1.3-10.el6_5.s390.rpm     MD5: 785eba44b4d120bf2b30705814dcb9a6
SHA-256: ae8322fd479572d05e723773a7f220262ae87e9950020a0e5c646aebfcb61c17
openjpeg-debuginfo-1.3-10.el6_5.s390x.rpm     MD5: 26cadb27836cc62438c55d73f8925902
SHA-256: 5f630768ac15584b0ebabe80349fb273274156221782f1bbbc1480753a8b8432
openjpeg-devel-1.3-10.el6_5.s390.rpm     MD5: 2c7325d9dfbcc439f39f0479cd2c26c3
SHA-256: ebf683e687249c37774f0e8cfc1878bc0ff42dfb0b4d94438cb64fca0a0e38db
openjpeg-devel-1.3-10.el6_5.s390x.rpm     MD5: a0824232ba6a2804eb03b687c27b175d
SHA-256: f832c6f5d17f3f356acbf25afec7054bca00767bc8f46ee9c21fb7c0dc2882c2
openjpeg-libs-1.3-10.el6_5.s390.rpm     MD5: ce4ff88a6924599e3030823a4fbedccd
SHA-256: 5c8e19412264c8c2e470856553c7425e37ff48553d6e261380e168daa20a0cef
openjpeg-libs-1.3-10.el6_5.s390x.rpm     MD5: fc165333f0888d068e4a75bd1b9543e8
SHA-256: 19a88fb3fa2a217c9e7d6fcb5b9c42e08c092d55b10889be6ebbdf0c5724b641
 
x86_64:
openjpeg-1.3-10.el6_5.x86_64.rpm     MD5: 56ae6bcb226c3a7dff1c02b8c4b539aa
SHA-256: ecee54e09753dbb2ef4207c1216542892238f7543088e762ff79c08e1b5bdd37
openjpeg-debuginfo-1.3-10.el6_5.i686.rpm     MD5: 5c72fe6c56c683319ed2b51bd7a4f34d
SHA-256: 9b16fc615c490b3e7bf7f2a3a57c138f51daf472b5c4b373b772e813d9e00ee7
openjpeg-debuginfo-1.3-10.el6_5.x86_64.rpm     MD5: 3429760676e4294970a5f4d59415196b
SHA-256: c0b601dd3baf4feee9ce6db489cf325a48bfe0b0f10b2f6cf9bec8f872e4a5d6
openjpeg-devel-1.3-10.el6_5.i686.rpm     MD5: 105f8aeb31d4b7980c96523eb0f99799
SHA-256: d4bb4425370bebb192b3515082ef88238ac9197cc4de46fb2eb0ca00b30c5d45
openjpeg-devel-1.3-10.el6_5.x86_64.rpm     MD5: 25e8e1987e42255188b395d81e3786d1
SHA-256: f28c862a9956e53bbcf24878dea13d1d99b3a2613da958a76eef30ecf648b15e
openjpeg-libs-1.3-10.el6_5.i686.rpm     MD5: 697e581d900e7a9fa8bb8fc170c679e0
SHA-256: 0f6bbffcbfdee88b33547ce1a2cbed9743968166be24953675f6ff5e49a57608
openjpeg-libs-1.3-10.el6_5.x86_64.rpm     MD5: ede731ca01b9436bd15fb259d71a7138
SHA-256: 2f5196f87b5a3a78fafa7f38547b250c137d78cb2bc7b4f679d40cfef5a559fc
 
Red Hat Enterprise Linux Workstation (v. 6)

SRPMS:
openjpeg-1.3-10.el6_5.src.rpm     MD5: 63e1b9a2dcae980e8ef443869dd88bd2
SHA-256: 802587e583410b7d222c9a31178c15a5dcb17d6ec80d4736e4b49d4ff5df9b6c
 
IA-32:
openjpeg-1.3-10.el6_5.i686.rpm     MD5: d3fad5d2b0903441536de0d93d1c722f
SHA-256: bca4c4c7d0ece708f79538893a96bc1359b3d91166dfc40b3f5edcf905424a61
openjpeg-debuginfo-1.3-10.el6_5.i686.rpm     MD5: 5c72fe6c56c683319ed2b51bd7a4f34d
SHA-256: 9b16fc615c490b3e7bf7f2a3a57c138f51daf472b5c4b373b772e813d9e00ee7
openjpeg-devel-1.3-10.el6_5.i686.rpm     MD5: 105f8aeb31d4b7980c96523eb0f99799
SHA-256: d4bb4425370bebb192b3515082ef88238ac9197cc4de46fb2eb0ca00b30c5d45
openjpeg-libs-1.3-10.el6_5.i686.rpm     MD5: 697e581d900e7a9fa8bb8fc170c679e0
SHA-256: 0f6bbffcbfdee88b33547ce1a2cbed9743968166be24953675f6ff5e49a57608
 
x86_64:
openjpeg-1.3-10.el6_5.x86_64.rpm     MD5: 56ae6bcb226c3a7dff1c02b8c4b539aa
SHA-256: ecee54e09753dbb2ef4207c1216542892238f7543088e762ff79c08e1b5bdd37
openjpeg-debuginfo-1.3-10.el6_5.i686.rpm     MD5: 5c72fe6c56c683319ed2b51bd7a4f34d
SHA-256: 9b16fc615c490b3e7bf7f2a3a57c138f51daf472b5c4b373b772e813d9e00ee7
openjpeg-debuginfo-1.3-10.el6_5.x86_64.rpm     MD5: 3429760676e4294970a5f4d59415196b
SHA-256: c0b601dd3baf4feee9ce6db489cf325a48bfe0b0f10b2f6cf9bec8f872e4a5d6
openjpeg-devel-1.3-10.el6_5.i686.rpm     MD5: 105f8aeb31d4b7980c96523eb0f99799
SHA-256: d4bb4425370bebb192b3515082ef88238ac9197cc4de46fb2eb0ca00b30c5d45
openjpeg-devel-1.3-10.el6_5.x86_64.rpm     MD5: 25e8e1987e42255188b395d81e3786d1
SHA-256: f28c862a9956e53bbcf24878dea13d1d99b3a2613da958a76eef30ecf648b15e
openjpeg-libs-1.3-10.el6_5.i686.rpm     MD5: 697e581d900e7a9fa8bb8fc170c679e0
SHA-256: 0f6bbffcbfdee88b33547ce1a2cbed9743968166be24953675f6ff5e49a57608
openjpeg-libs-1.3-10.el6_5.x86_64.rpm     MD5: ede731ca01b9436bd15fb259d71a7138
SHA-256: 2f5196f87b5a3a78fafa7f38547b250c137d78cb2bc7b4f679d40cfef5a559fc
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

1036491 - CVE-2013-6052 openjpeg: out-of-bounds memory read flaws
1036495 - CVE-2013-6045 openjpeg: heap-based buffer overflows
1036499 - CVE-2013-6054 openjpeg: heap-based buffer overflows in version 1.3
1037945 - CVE-2013-1447 openjpeg: multiple denial of service flaws


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/