Signature Detail

APP: Oracle Outside In JPEG 2000 CRG Segment Processing Heap Buffer Overflow

A heap buffer overflow vulnerability exists in Oracle Outside-In, a set of libraries used to decode many file formats. The vulnerability exists when handling the CRG marker segments in JPEG 2000 files. Oracle Outside-In is embedded in many enterprise applications. This vulnerability can be exploited by causing an application that uses the vulnerable library to handle a malformed JPEG 2000 file. Depending on the application, user interaction may be required. Successful exploitation can result in arbitrary code execution in the context of the affected application.

Extended Description

JasPer is prone to multiple remote heap-based buffer-overflow vulnerabilities because the application fails to perform adequate boundary checks on user-supplied input. Attackers may leverage these issues to execute arbitrary code in the context of the application that uses the affected library. Failed attacks will cause denial-of-service conditions.

Affected Products

• Avaya Aura Experience Portal 6.0
• Debian Linux 6.0 amd64
• Debian Linux 6.0 arm
• Debian Linux 6.0 ia-32
• Debian Linux 6.0 ia-64
• Debian Linux 6.0 mips
• Debian Linux 6.0 powerpc
• Debian Linux 6.0 s/390
• Debian Linux 6.0 sparc
• Gentoo Linux
• JasPer 1.701
• JasPer 1.900
• JasPer 1.900.1
• Mandriva Enterprise Server 5
• Mandriva Enterprise Server 5 X86 64
• Mandriva Linux Mandrake 2010.1
• Mandriva Linux Mandrake 2010.1 X86 64
• Mandriva Linux Mandrake 2011
• Mandriva Linux Mandrake 2011 x86_64
• Oracle Enterprise Linux 4
• Oracle Enterprise Linux 5
• Oracle Enterprise Linux 6
• Oracle Enterprise Linux 6.2
• Oracle Outside In 8.3.5.0
• Oracle Outside In 8.3.5.0
• Oracle Outside In 8.3.7
• Red Hat Enterprise Linux 5 Server
• Red Hat Enterprise Linux Desktop Version 4
• Red Hat Enterprise Linux AS 4
• Red Hat Enterprise Linux Desktop 5 Client
• Red Hat Enterprise Linux Desktop 6
• Red Hat Enterprise Linux Desktop Optional 6
• Red Hat Enterprise Linux Desktop Workstation 5 Client
• Red Hat Enterprise Linux ES 4
• Red Hat Enterprise Linux HPC Node 6
• Red Hat Enterprise Linux HPC Node Optional 6
• Red Hat Enterprise Linux Server 6
• Red Hat Enterprise Linux Server Optional 6
• Red Hat Enterprise Linux Workstation 6
• Red Hat Enterprise Linux Workstation Optional 6
• Red Hat Enterprise Linux WS 4
• Red Hat Fedora 15
• Red Hat Fedora 16
• SuSE openSUSE 11.3
• SuSE openSUSE 11.4
• SuSE SUSE Linux Enterprise Desktop 11 SP1
• SuSE SUSE Linux Enterprise SDK 11 SP1
• SuSE SUSE Linux Enterprise Server 11 SP1
• SuSE SUSE Linux Enterprise Server for VMware 11 SP1
• Symantec Enterprise Vault 10.0
• Symantec Enterprise Vault 9.0
• Symantec Enterprise Vault 9.0.1
• Symantec Enterprise Vault 9.0.2
• Ubuntu Ubuntu Linux 10.04 Amd64
• Ubuntu Ubuntu Linux 10.04 ARM
• Ubuntu Ubuntu Linux 10.04 I386
• Ubuntu Ubuntu Linux 10.04 Powerpc
• Ubuntu Ubuntu Linux 10.04 Sparc
• Ubuntu Ubuntu Linux 10.10 amd64
• Ubuntu Ubuntu Linux 10.10 ARM
• Ubuntu Ubuntu Linux 10.10 i386
• Ubuntu Ubuntu Linux 10.10 powerpc
• Ubuntu Ubuntu Linux 11.04 amd64
• Ubuntu Ubuntu Linux 11.04 ARM
• Ubuntu Ubuntu Linux 11.04 i386
• Ubuntu Ubuntu Linux 11.04 powerpc
• Ubuntu Ubuntu Linux 11.10 amd64
• Ubuntu Ubuntu Linux 11.10 i386
• Ubuntu Ubuntu Linux 8.04 LTS Amd64
• Ubuntu Ubuntu Linux 8.04 LTS I386
• Ubuntu Ubuntu Linux 8.04 LTS Lpia
• Ubuntu Ubuntu Linux 8.04 LTS Powerpc
• Ubuntu Ubuntu Linux 8.04 LTS Sparc

References

• BugTraq: 50992
• CVE: CVE-2011-4517
• URL: http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html