{"id":"RHSA-2021:4251","summary":"Red Hat Security Advisory: openjpeg2 security update","modified":"2026-01-07T10:22:10.789284Z","published":"2024-09-16T06:03:27Z","upstream":["CVE-2018-20845","CVE-2018-20847","CVE-2018-5727","CVE-2018-5785","CVE-2019-12973","CVE-2020-15389","CVE-2020-27814","CVE-2020-27823","CVE-2020-27824","CVE-2020-27842","CVE-2020-27843","CVE-2020-27845","CVE-2021-29338","CVE-2021-3575"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2021:4251"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.5_release_notes/"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1536552"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1537758"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1728505"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1728509"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1732270"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1852869"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1901998"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1905723"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1905762"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1907513"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1907516"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1907523"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1950101"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1957616"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_4251.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-5727"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-5727"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-5727"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-5785"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-5785"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-5785"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-20845"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-20845"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-20845"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-20847"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-20847"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-20847"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2019-12973"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2019-12973"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2019-12973"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-15389"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-15389"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-15389"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-27814"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-27814"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-27814"},{"type":"ARTICLE","url":"https://github.com/uclouvain/openjpeg/issues/1283"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-27823"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-27823"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-27823"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-27824"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-27824"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-27824"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-27842"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-27842"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-27842"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-27843"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-27843"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-27843"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-27845"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-27845"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-27845"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-3575"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-3575"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3575"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-29338"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-29338"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-29338"}],"affected":[{"package":{"name":"openjpeg2","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/openjpeg2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.4.0-4.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4251.json"}},{"package":{"name":"openjpeg2-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/openjpeg2-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.4.0-4.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4251.json"}},{"package":{"name":"openjpeg2-debugsource","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/openjpeg2-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.4.0-4.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4251.json"}},{"package":{"name":"openjpeg2-devel","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/openjpeg2-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.4.0-4.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4251.json"}},{"package":{"name":"openjpeg2-devel-docs","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/openjpeg2-devel-docs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.4.0-4.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4251.json"}},{"package":{"name":"openjpeg2-tools","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/openjpeg2-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.4.0-4.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4251.json"}},{"package":{"name":"openjpeg2-tools-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/openjpeg2-tools-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.4.0-4.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4251.json"}},{"package":{"name":"openjpeg2","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/openjpeg2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.4.0-4.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4251.json"}},{"package":{"name":"openjpeg2-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/openjpeg2-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.4.0-4.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4251.json"}},{"package":{"name":"openjpeg2-debugsource","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/openjpeg2-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.4.0-4.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4251.json"}},{"package":{"name":"openjpeg2-devel","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/openjpeg2-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.4.0-4.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4251.json"}},{"package":{"name":"openjpeg2-devel-docs","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/openjpeg2-devel-docs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.4.0-4.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4251.json"}},{"package":{"name":"openjpeg2-tools","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/openjpeg2-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.4.0-4.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4251.json"}},{"package":{"name":"openjpeg2-tools-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/openjpeg2-tools-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.4.0-4.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4251.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}