#VU14216 Heap-based buffer overflow in OpenJPEG - CVE-2016-9573


Vulnerability identifier: #VU14216

Vulnerability risk: Low

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2016-9573

CWE-ID: CWE-125

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
OpenJPEG
Universal components / Libraries / Libraries used by multiple products

Vendor: openjpeg.org

Description

The vulnerability allows a remote attacker to obtain potentially sensitive information or cause the service to crash.

The vulnerability exists in the j2k_to_image component due to due to a heap-based buffer overflow when the j2k_to_image tool handles red, green, blue, and alpha (RGBA) channel dimensions. A remote attacker can execute an application that submits malicious input, trigger out-of-bounds read and gain access to potentially sensitive information or cause the service to crash.

Mitigation
Update to version 2.2.0 or later.

Vulnerable software versions

OpenJPEG: 2.1.2

External links
https://github.com/uclouvain/openjpeg/issues/862

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Slackware Linux update for openjpeg
OpenSUSE Linux update for openjpeg2
OpenSUSE Linux update for openjpeg2
OpenSUSE Linux update for openjpeg2
SUSE Linux update for openjpeg2
Fedora 24 update for mingw-openjpeg2
Fedora 25 update for mingw-openjpeg2
Fedora 23 update for mingw-openjpeg2
Fedora 23 update for openjpeg2
Fedora 23 update for mingw-openjpeg2