Fabrice Fontaine 190964b668 package/openjpeg: fix CVE-2020-8112 ...

opj_t1_clbl_decode_processor in openjp2/t1.c in OpenJPEG 2.3.1 through
2020-01-28 has a heap-based buffer overflow in the qmfbid==1 case, a
different issue than CVE-2020-6851.

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>

2020-03-01 10:42:34 +01:00

..

0001-thirdparty-tiff-append-flags-found-by-pkg-config-if-.patch

…

0002-thirdparty-lcms2-append-flags-found-by-pkg-config-if.patch

…

0003-CMakeLists.txt-Don-t-require-a-C-compiler.patch

…

0004-convertbmp-detect-invalid-file-dimensions-early.patch

…

0005-bmp_read_rle4_data-avoid-potential-infinite-loop.patch

…

0006-opj_j2k_update_image_dimensions-reject-images-whose-coordinates.patch

…

0007-opj_tcd_init_tile-avoid-integer-overflow.patch

package/openjpeg: fix CVE-2020-8112

2020-03-01 10:42:34 +01:00

Config.in

…

openjpeg.hash

…

openjpeg.mk

package/openjpeg: fix CVE-2020-8112

2020-03-01 10:42:34 +01:00