1
Candidate: CVE-2016-7163
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7163
6
Integer overflow in the opj_pi_create_decode function in pi.c in OpenJPEG
7
allows remote attackers to execute arbitrary code via a crafted JP2 file,
8
which triggers an out-of-bounds read or write.
12
https://github.com/uclouvain/openjpeg/issues/826
13
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=837604
14
https://bugs.launchpad.net/ubuntu/+source/openjpeg2/+bug/1630702
20
upstream_openjpeg: needs-triage
21
precise_openjpeg: ignored (reached end-of-life)
22
precise/esm_openjpeg: DNE (precise was needed)
23
trusty_openjpeg: needed
24
vivid/stable-phone-overlay_openjpeg: DNE
25
vivid/ubuntu-core_openjpeg: DNE
26
xenial_openjpeg: needed
27
yakkety_openjpeg: ignored (reached end-of-life)
34
upstream: https://github.com/uclouvain/openjpeg/commit/c16bc057ba3f125051c9966cf1f5b68a05681de4
35
upstream: https://github.com/uclouvain/openjpeg/commit/ef01f18dfc6780b776d0674ed3e7415c6ef54d24
36
upstream_openjpeg2: needs-triage
37
precise_openjpeg2: DNE
38
precise/esm_openjpeg2: DNE
40
vivid/stable-phone-overlay_openjpeg2: DNE
41
vivid/ubuntu-core_openjpeg2: DNE
42
xenial_openjpeg2: released (2.1.0-2.1ubuntu0.1)
43
yakkety_openjpeg2: released (2.1.1-1ubuntu0.1)
44
zesty_openjpeg2: released (2.1.1-1ubuntu0.1)
45
artful_openjpeg2: released (2.1.1-1ubuntu0.1)
46
bionic_openjpeg2: released (2.1.1-1ubuntu0.1)
47
devel_openjpeg2: released (2.1.1-1ubuntu0.1)