SUSE Package Hub - SUSE-PackageHub-16.0-823

Update Info

SUSE-PackageHub-16.0-823

Security update for openjpeg2

Type: security

Severity: important

Issued: 2026-05-29

Description:

This update for openjpeg2 fixes the following issue

- CVE-2025-54874: openjpeg: missing error check can lead to the use of an uninitialized pointer and cause an out-of-
  bounds heap memory write (bsc#1247650).

References

CVE: CVE-2025-54874
Bugzilla: 1247650 VUL-0: CVE-2025-54874: openjpeg2: openjpeg: missing error check can lead to the use of an uninitialized pointer and cause an out-of-bounds heap memory write

Packages

openjpeg2-2.5.3-160000.4.1