AZL-44190 CVE-2019-17546 affecting package openjpeg2 2.3.1-12

🗓️ 14 Oct 2019 02:15:11Reported by GoogleType

osv

osv🔗 osv.dev👁 2 Views

CVE-2019-17546: integer overflow in tif_getimage.c may cause heap overflow for crafted RGBA images.

Reporter	Title	Published	Views	Family All 137
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM is vulnerable to using components with known vulnerabilities	27 Jan 202100:05	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in LibTIFF	3 Apr 202102:03	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM is vulnerable to using components with known vulnerabilities	27 Jan 202100:05	–	ibm
ALT Linux	Security fix for the ALT Linux 10 package libtiff version 4.1.0-alt1	14 Nov 201900:00	–	altlinux
Tenable Nessus	Amazon Linux 2 : libtiff (ALAS-2020-1532)	28 Oct 202000:00	–	nessus
Tenable Nessus	Amazon Linux AMI : libtiff (ALAS-2020-1447)	18 Nov 202000:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0105: libtiff (ALINUX3-SA-2022:0105)	14 May 202500:00	–	nessus
Tenable Nessus	AlmaLinux 8 : libtiff (ALSA-2020:4634)	9 Feb 202200:00	–	nessus
Tenable Nessus	CentOS 8 : libtiff (CESA-2020:4634)	1 Feb 202100:00	–	nessus
Tenable Nessus	CentOS 7 : libtiff (RHSA-2020:3902)	20 Oct 202000:00	–	nessus

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2019-17546

21 Apr 2026 04:31Current

7High risk

Vulners AI Score7

CVSS 3.18.8

EPSS0.00373

cve-2019-17546 libtiff tif_getimage.c rgba image heap overflow openjpeg gdal