logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2016-10505

Description

NULL pointer dereference vulnerabilities in the imagetopnm function in convert.c, sycc444_to_rgb function in color.c, color_esycc_to_rgb function in color.c, and sycc422_to_rgb function in color.c in OpenJPEG before 2.2.0 allow remote attackers to cause a denial of service (application crash) via crafted j2k files.


Affected Package


OS OS Version Package Name Package Version
Debian 12 openjpeg2 2.5.0-1
Debian 11 openjpeg2 2.4.0-3
Debian 10 openjpeg2 2.3.0-2+deb10u2
Debian 999 openjpeg2 2.5.0-1

Related