#VU33492 Out-of-bounds read in Debian Linux and Fedora - CVE-2016-7163


| Updated: 2020-08-04

Vulnerability identifier: #VU33492

Vulnerability risk: Low

CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2016-7163

CWE-ID: CWE-125

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Debian Linux
Operating systems & Components / Operating system
Fedora
Operating systems & Components / Operating system

Vendor: Debian
Fedoraproject

Description

The vulnerability allows a local non-authenticated attacker to execute arbitrary code.

Integer overflow in the opj_pi_create_decode function in pi.c in OpenJPEG allows remote attackers to execute arbitrary code via a crafted JP2 file, which triggers an out-of-bounds read or write.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Debian Linux: 8.0

Fedora: 23 - 25

External links
https://rhn.redhat.com/errata/RHSA-2017-0559.html
https://rhn.redhat.com/errata/RHSA-2017-0838.html
https://www.debian.org/security/2016/dsa-3665
https://www.openwall.com/lists/oss-security/2016/09/08/3
https://www.openwall.com/lists/oss-security/2016/09/08/6
https://www.securityfocus.com/bid/92897
https://github.com/uclouvain/openjpeg/commit/c16bc057ba3f125051c9966cf1f5b68a05681de4
https://github.com/uclouvain/openjpeg/commit/ef01f18dfc6780b776d0674ed3e7415c6ef54d24
https://github.com/uclouvain/openjpeg/issues/826
https://github.com/uclouvain/openjpeg/pull/809
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2T6IQAMS4W65MGP7UW5FPE22PXELTK5D/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/66BWMMMWXH32J5AOGLAJGZA3GH5LZHXH/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AQ2IIIQSJ3J4MONBOGCG6XHLKKJX2HKM/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/H4IRSGYMBSHCBZP23CUDIRJ3LBKH6ZJ7/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JYLOX7PZS3ZUHQ6RGI3M6H27B7I5ZZ26/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YGKSEWWWED77Q5ZHK4OA2EKSJXLRU3MK/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


OpenSUSE Linux update for openjpeg2
OpenSUSE Linux update for openjpeg2
Out-of-bounds read in Debian Linux
Out-of-bounds read in openjpeg (Alpine package)