Synopsis: Important: openjpeg security update Issue Date: 2012-09-17 CVE Numbers: CVE-2012-3535 OpenJPEG is an open source library for reading and writing image files in JPEG 2000 format. It was found that OpenJPEG failed to sanity-check an image header field before using it. A remote attacker could provide a specially-crafted image file that could cause an application linked against OpenJPEG to crash or, possibly, execute arbitrary code. (CVE-2012-3535) Users of OpenJPEG should upgrade to these updated packages, which contain a patch to correct this issue. All running applications using OpenJPEG must be restarted for the update to take effect. SL6 x86_64 openjpeg-libs-1.3-9.el6_3.i686.rpm openjpeg-libs-1.3-9.el6_3.x86_64.rpm openjpeg-1.3-9.el6_3.x86_64.rpm openjpeg-devel-1.3-9.el6_3.i686.rpm openjpeg-devel-1.3-9.el6_3.x86_64.rpm i386 openjpeg-libs-1.3-9.el6_3.i686.rpm openjpeg-1.3-9.el6_3.i686.rpm openjpeg-devel-1.3-9.el6_3.i686.rpm - Scientific Linux Development Team