Wind River Support Network

HomeDefectsLIN9-6038

Fixed

LIN9-6038 : Security Advisory - openjpeg - CVE-2017-17479

Created: Dec 14, 2017 Updated: Dec 23, 2018

Resolved Date: Oct 31, 2018

Found In Version: 9.0.0.13

Fix Version: 9.0.0.19

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Userspace

Description

In OpenJPEG 2.3.0, a stack-based buffer overflow was discovered in the pgxtoimage function in jpwl/convert.c. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution.

https://nvd.nist.gov/vuln/detail/CVE-2017-17479

Other Downloads

Wind River Linux 9.0.0.19
Wind River Linux 9.0.0.20
Wind River Linux 9.0.0.21
Wind River Linux 9.0.0.22
Wind River Linux 9.0.0.23
Wind River Linux 9.0.0.24
Wind River Linux 9.0.0.25
Wind River Linux 9.0.0.26

CVEs

CVE-2017-17479