Rapid7 Vulnerability & Exploit Database

Oracle Linux: (CVE-2021-3575) ELSA-2021-4251: openjpeg2 security update

Back to Search

Oracle Linux: (CVE-2021-3575) ELSA-2021-4251: openjpeg2 security update

Severity
4
CVSS
(AV:L/AC:M/Au:N/C:P/I:P/A:P)
Published
11/16/2021
Created
11/19/2021
Added
11/17/2021
Modified
11/17/2021

Description

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From ELSA-2021-4251:

[2.4.0-4] - Fix Covscan defect [2.4.0-3] - Fix CVE-2021-3575 (#1969279) - Fix resource leak identified by Covscan [2.4.0-2] - Fix CVE-2021-29338 (#1951332) [2.4.0-1] - Rebase to 2.4.0 - Resolves: CVE-2018-5727 (#1538467) - Resolves: CVE-2018-5785 (#1538556) - Resolves: CVE-2018-20845 (#1730679) - Resolves: CVE-2018-20847 (#1734337) - Resolves: CVE-2019-12973 (#1739076) - Resolves: CVE-2020-15389 (#1855115) - Resolves: CVE-2020-27814 (#1908965) - Resolves: CVE-2020-27823 (#1906222) - Resolves: CVE-2020-27824 (#1906216) - Resolves: CVE-2020-27842 (#1908165) - Resolves: CVE-2020-27843 (#1908164) - Resolves: CVE-2020-27845 (#1908168)

Solution(s)

  • oracle-linux-upgrade-openjpeg2
  • oracle-linux-upgrade-openjpeg2-devel
  • oracle-linux-upgrade-openjpeg2-devel-docs
  • oracle-linux-upgrade-openjpeg2-tools

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;