FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-29 07:54:42 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
11dc3890-0e64-11e8-99b0-d017c2987f9aOpenJPEG -- multiple vulnerabilities

OpenJPEG reports:

Multiple vulnerabilities have been found in OpenJPEG, the opensource JPEG 2000 codec. Please consult the CVE list for further details.

CVE-2017-17479 and CVE-2017-17480 were fixed in r477112.

CVE-2018-5785 was fixed in r480624.

CVE-2018-6616 was fixed in r489415.


Discovery 2017-12-08
Entry 2018-07-27
Modified 2019-02-11
openjpeg
< 2.3.0_3

https://nvd.nist.gov/vuln/detail/CVE-2017-17479
https://nvd.nist.gov/vuln/detail/CVE-2017-17480
https://nvd.nist.gov/vuln/detail/CVE-2018-5785
https://nvd.nist.gov/vuln/detail/CVE-2018-6616
CVE-2017-17479
CVE-2017-17480
CVE-2018-5785
CVE-2018-6616
5efd7a93-2dfb-11e9-9549-e980e869c2e9OpenJPEG -- integer overflow

NVD reports:

In OpenJPEG 2.3.0, there is an integer overflow vulnerability in the opj_t1_encode_cblks function (openjp2/t1.c). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file.


Discovery 2017-12-08
Entry 2019-02-11
Modified 2019-03-29
openjpeg
< 2.3.0_4

https://nvd.nist.gov/vuln/detail/CVE-2018-5727
https://github.com/uclouvain/openjpeg/issues/1053
CVE-2018-5727