[opensource-dev] openjpeg 1.4 lib used with second life - CVE

Phil Wyett aura.yoda at gmail.com
Thu Mar 20 14:55:31 PDT 2014


Hi all,

SL uses the openjpeg library 1.4. This is quite an aged release. Has the
version bundled with SL been fixed or update arranged for the known CVE
against it?

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3535
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3358

Regards

Phil Wyett

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 836 bytes
Desc: This is a digitally signed message part
Url : http://lists.secondlife.com/pipermail/opensource-dev/attachments/20140320/36adee19/attachment.pgp 


More information about the opensource-dev mailing list