OVAL Reference oval:org.mitre.oval:def:20007

CVE-2013-1447) via application crash or high memory consumption, possible code execution through heap buffer overflows (CVE-2013-6045), information disclosure (CVE-2013-6052), or yet another heap buffer overflow that only appears to affect OpenJPEG 1.3 (CVE-2013-6054)."> OVAL Reference oval:org.mitre.oval:def:20007 - CERT Civis.Net

Oval Definition:

oval:org.mitre.oval:def:20007

Revision Date:	2014-06-23	Version:	7
Title:	DSA-2808-1 openjpeg - several
Description:	Several vulnerabilities have been discovered in OpenJPEG, a JPEG 2000 image library, that may lead to denial of service (CVE-2013-1447) via application crash or high memory consumption, possible code execution through heap buffer overflows (CVE-2013-6045), information disclosure (CVE-2013-6052), or yet another heap buffer overflow that only appears to affect OpenJPEG 1.3 (CVE-2013-6054).
Family:	unix	Class:	patch
Status:	ACCEPTED	Reference(s):	CVE-2013-1447 CVE-2013-6045 CVE-2013-6052 CVE-2013-6054 DSA-2808-1
Platform(s):	Debian GNU/kFreeBSD 6.0 Debian GNU/kFreeBSD 7 Debian GNU/Linux 6.0 Debian GNU/Linux 7	Product(s):	openjpeg
Definition Synopsis
Release section Debian 6.0 is installed AND GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed OR Debian GNU/kFreeBSD is installed AND openjpeg DPKG is earlier than 0:1.3+dfsg-4+squeeze2 Release section Debian 7 is installed AND GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed OR Debian GNU/kFreeBSD is installed AND openjpeg DPKG is earlier than 0:1.3+dfsg-4.7

BACK