CVE-2020-8112
Published: 28 January 2020
opj_t1_clbl_decode_processor in openjp2/t1.c in OpenJPEG 2.3.1 through 2020-01-28 has a heap-based buffer overflow in the qmfbid==1 case, a different issue than CVE-2020-6851.
From the Ubuntu Security Team
It was discovered that OpenJPEG did not properly handle certain input. If OpenJPEG were supplied with specially crafted input, it could be made to crash or possibly execute arbitrary code.
Priority
Status
Package | Release | Status |
---|---|---|
openjpeg2 Launchpad, Ubuntu, Debian |
impish |
Released
(2.3.1-1ubuntu4)
|
groovy |
Released
(2.3.1-1ubuntu4)
|
|
hirsute |
Released
(2.3.1-1ubuntu4)
|
|
trusty |
Does not exist
|
|
xenial |
Released
(2.1.2-1.1+deb9u5build0.16.04.1)
|
|
eoan |
Ignored
(end of life)
|
|
focal |
Released
(2.3.1-1ubuntu4)
|
|
bionic |
Released
(2.3.0-2+deb10u2build0.18.04.1)
|
|
jammy |
Released
(2.3.1-1ubuntu4)
|
|
upstream |
Released
(2.4.0)
|
|
lunar |
Released
(2.3.1-1ubuntu4)
|
|
kinetic |
Released
(2.3.1-1ubuntu4)
|
|
Patches: upstream: https://github.com/uclouvain/openjpeg/commit/05f9b91e60debda0e83977e5e63b2e66486f7074 |
||
ghostscript Launchpad, Ubuntu, Debian |
impish |
Not vulnerable
(uses system openjpeg2)
|
upstream |
Needs triage
|
|
trusty |
Does not exist
|
|
focal |
Not vulnerable
(uses system openjpeg2)
|
|
groovy |
Not vulnerable
(uses system openjpeg2)
|
|
hirsute |
Not vulnerable
(uses system openjpeg2)
|
|
bionic |
Released
(9.26~dfsg+0-0ubuntu0.18.04.14)
|
|
xenial |
Released
(9.26~dfsg+0-0ubuntu0.16.04.14)
|
|
jammy |
Not vulnerable
(uses system openjpeg2)
|
|
lunar |
Not vulnerable
(uses system openjpeg2)
|
|
kinetic |
Not vulnerable
(uses system openjpeg2)
|
|
openjpeg Launchpad, Ubuntu, Debian |
impish |
Does not exist
|
upstream |
Needs triage
|
|
bionic |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
hirsute |
Does not exist
|
|
trusty |
Not vulnerable
(code not present)
|
|
jammy |
Does not exist
|
|
xenial |
Not vulnerable
(code not present)
|
|
lunar |
Does not exist
|
|
kinetic |
Does not exist
|
|
blender Launchpad, Ubuntu, Debian |
groovy |
Ignored
(end of life)
|
hirsute |
Ignored
(end of life)
|
|
kinetic |
Ignored
(end of life, was needs-triage)
|
|
upstream |
Needs triage
|
|
trusty |
Does not exist
|
|
xenial |
Needs triage
|
|
eoan |
Ignored
(end of life)
|
|
focal |
Needs triage
|
|
bionic |
Needs triage
|
|
jammy |
Needs triage
|
|
impish |
Ignored
(end of life)
|
|
lunar |
Needs triage
|
|
insighttoolkit4 Launchpad, Ubuntu, Debian |
groovy |
Ignored
(end of life)
|
hirsute |
Ignored
(end of life)
|
|
kinetic |
Ignored
(end of life, was needs-triage)
|
|
upstream |
Needs triage
|
|
trusty |
Does not exist
|
|
bionic |
Needs triage
|
|
eoan |
Ignored
(end of life)
|
|
focal |
Needs triage
|
|
xenial |
Needs triage
|
|
jammy |
Needs triage
|
|
impish |
Ignored
(end of life)
|
|
lunar |
Needs triage
|
|
qtwebengine-opensource-src Launchpad, Ubuntu, Debian |
groovy |
Ignored
(end of life)
|
kinetic |
Ignored
(end of life, was needs-triage)
|
|
upstream |
Needs triage
|
|
trusty |
Does not exist
|
|
xenial |
Does not exist
|
|
bionic |
Needs triage
|
|
eoan |
Ignored
(end of life)
|
|
focal |
Needs triage
|
|
jammy |
Needs triage
|
|
impish |
Ignored
(end of life)
|
|
lunar |
Needs triage
|
|
hirsute |
Ignored
(end of life)
|
|
texmaker Launchpad, Ubuntu, Debian |
groovy |
Ignored
(end of life)
|
hirsute |
Ignored
(end of life)
|
|
kinetic |
Ignored
(end of life, was needs-triage)
|
|
upstream |
Needs triage
|
|
trusty |
Does not exist
|
|
bionic |
Needs triage
|
|
eoan |
Ignored
(end of life)
|
|
focal |
Needs triage
|
|
jammy |
Needs triage
|
|
impish |
Ignored
(end of life)
|
|
lunar |
Needs triage
|
|
xenial |
Needs triage
|
Severity score breakdown
Parameter | Value |
---|---|
Base score | 8.8 |
Attack vector | Network |
Attack complexity | Low |
Privileges required | None |
User interaction | Required |
Scope | Unchanged |
Confidentiality | High |
Integrity impact | High |
Availability impact | High |
Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8112
- https://lists.debian.org/debian-lts-announce/2020/01/msg00035.html
- https://ubuntu.com/security/notices/USN-4686-1
- https://ubuntu.com/security/notices/USN-4497-1
- https://ubuntu.com/security/notices/USN-5952-1
- NVD
- Launchpad
- Debian