A code execution vulnerability exists in the Kakadu SDK 7.9’s parsing of compressed JPEG 2000 images. A specially crafted JPEG 2000 file can be read by the program, and can lead to an out of bounds write causing an exploitable condition to arise.
CPE | Name | Operator | Version |
---|---|---|---|
kakadu_sdk | eq | 7.9 |