Ubuntu
openjpeg2 package

  1. Bug #1630702
  2. Comment #1

Comment 1 for bug 1630702

Revision history for this message
Seth Arnold (seth-arnold) wrote : Re: CVE-2016-8332 allows an out-of-bound heap write to occur resulting in heap corruption and arbitrary code execution

Nikita, if you have time and care for OpenJPEG, please consider reviewing the crashing inputs I reported to the OpenJPEG team:

https://bugs.launchpad.net/ubuntu/+source/openjpeg2/+bug/711061/+attachment/4586223/+files/openjpeg-crashers.tar.gz
https://bugs.launchpad.net/ubuntu/+source/openjpeg2/+bug/711061/+attachment/4723094/+files/crashes-openjpeg-2.1.1.tar.gz

There's a few hundred crashing files there that need inspection and fixing.

Thanks