REDHAT-BUG-1852869: Use After Free

Q: What is the severity of REDHAT-BUG-1852869?

The severity of REDHAT-BUG-1852869 is high due to the potential for remote code execution via use-after-free vulnerabilities.

Q: How do I fix REDHAT-BUG-1852869?

To fix REDHAT-BUG-1852869, upgrade to OpenJPEG version 2.3.1 or later.

Q: What software is affected by REDHAT-BUG-1852869?

REDHAT-BUG-1852869 affects OpenJPEG versions prior to 2.3.1.

Q: Can REDHAT-BUG-1852869 lead to data corruption?

Yes, triggering the vulnerabilities in REDHAT-BUG-1852869 can potentially lead to data corruption.

Q: Is there a known exploit for REDHAT-BUG-1852869?

While specific exploits for REDHAT-BUG-1852869 are not publicly documented, the vulnerability presents a significant security risk.

Published Jul 1, 2020

Updated

jp2/opjdecompress.c in OpenJPEG through 2.3.1 has a use-after-free that can be triggered if there is a mix of valid and invalid files in a directory operated on by the decompressor. Triggering a double-free may also be possible. This is related to calling opjimagedestroy twice.

Reference: https://github.com/uclouvain/openjpeg/issues/1261

Affected Software

1 affected component

OpenJPEG OpenJPEG<2.3.1

Event History

Jul 1, 2020

Data Sourced

via Red Hat·01:49 PM

DescriptionSeverityAffected Software

Frequently Asked Questions

What is the severity of REDHAT-BUG-1852869?

The severity of REDHAT-BUG-1852869 is high due to the potential for remote code execution via use-after-free vulnerabilities.

How do I fix REDHAT-BUG-1852869?

To fix REDHAT-BUG-1852869, upgrade to OpenJPEG version 2.3.1 or later.

What software is affected by REDHAT-BUG-1852869?

REDHAT-BUG-1852869 affects OpenJPEG versions prior to 2.3.1.

Can REDHAT-BUG-1852869 lead to data corruption?

Yes, triggering the vulnerabilities in REDHAT-BUG-1852869 can potentially lead to data corruption.

Is there a known exploit for REDHAT-BUG-1852869?