{"affected":[{"ecosystem_specific":{"binaries":[{"libopenjpeg1":"1.5.2-6.1","openjpeg":"1.5.2-6.1","openjpeg-devel":"1.5.2-6.1"}]},"package":{"ecosystem":"SUSE:Package Hub 12 SP1","name":"openjpeg","purl":"pkg:rpm/suse/openjpeg&distro=SUSE%20Package%20Hub%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.5.2-6.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for openjpeg fixes the following vulnerability:\n\n* CVE-2016-7445: Null pointer dereference in convert.c could lead to crash (bsc#999817)\n\nThe following bug was also fixed:\n\n- Programs linked with libopenjpeg1 would expose non-standard math behavior due to usage of -ffast-math in openjpeg (boo#1029609, boo#1059440)</description>\n","id":"openSUSE-SU-2017:2568-1","modified":"2017-09-25T21:35:07Z","published":"2017-09-25T21:35:07Z","references":[{"type":"ADVISORY","url":null},{"type":"REPORT","url":"https://bugzilla.suse.com/1029609"},{"type":"REPORT","url":"https://bugzilla.suse.com/1059440"},{"type":"REPORT","url":"https://bugzilla.suse.com/999817"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-7445"}],"related":["CVE-2016-7445"],"summary":"Recommended update for openjpeg","upstream":["CVE-2016-7445"]}