GLSA-201710-26 : OpenJPEG: Multiple vulnerabilities
Medium Nessus Plugin ID 104069
SynopsisThe remote Gentoo host is missing one or more security-related patches.
DescriptionThe remote host is affected by the vulnerability described in GLSA-201710-26 (OpenJPEG: Multiple vulnerabilities)
Multiple vulnerabilities have been discovered in OpenJPEG. Please review the references below for details.
A remote attacker, via a crafted BMP, PDF, or j2k document, could execute arbitrary code, cause a Denial of Service condition, or have other unspecified impacts.
There is no known workaround at this time.
SolutionAll OpenJPEG users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=media-libs/openjpeg-2.3.0:2'