Lucene search
K

2104 matches found

Chainguard
Chainguard
added 2026/06/04 7:18 p.m.11 views

CVE-2023-39329 vulnerabilities

Vulnerabilities for packages: openjpeg...

6.5CVSS6.6AI score0.00559EPSS
Exploits0
Chainguard
Chainguard
added 2026/06/04 7:18 p.m.5 views

GHSA-8G92-F59V-J999 vulnerabilities

Vulnerabilities for packages: openjpeg...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/06/04 7:18 p.m.8 views

CVE-2023-39328 vulnerabilities

Vulnerabilities for packages: openjpeg...

5.5CVSS6.4AI score0.00242EPSS
Exploits0
Rosalinux
Rosalinux
added 2026/06/01 11:23 a.m.12 views

Advisory ROSA-SA-2026-3305

CVE-ID: CVE-2016-10506 BDU-ID: None CVE-Crit: Medium CVE-DESCRIPTION: Vulnerabilities involving division by zero in functions opjpinextcprl, opjpinextpcrl, and opjpinextrpcl in the pi.c file of OpenJPEG allow a malicious attacker to cause a service failure abrupt termination of the application...

6.5CVSS5.8AI score0.0347EPSS
Exploits0
OSV
OSV
added 2026/05/26 7:31 p.m.15 views

JLSEC-2026-541

A flaw was found in openjpeg's src/lib/openjp2/t2.c in versions prior to 2.4.0. This flaw allows an attacker to provide crafted input to openjpeg during conversion and encoding, causing an out-of-bounds write. The highest threat from this vulnerability is to confidentiality, integrity, as well as...

8.3CVSS6.9AI score0.01329EPSS
Exploits0References10
OSV
OSV
added 2026/05/26 7:31 p.m.11 views

JLSEC-2026-544

opjt1clbldecodeprocessor in openjp2/t1.c in OpenJPEG 2.3.1 through 2020-01-28 has a heap-based buffer overflow in the qmfbid==1 case, a different issue than CVE-2020-6851...

8.8CVSS7.1AI score0.03624EPSS
Exploits1References22
OSV
OSV
added 2026/05/26 7:31 p.m.18 views

JLSEC-2026-547

A flaw was found in the opj2decompress program in openjpeg2 2.4.0 in the way it handles an input directory with a large number of files. When it fails to allocate a buffer to store the filenames of the input directory, it calls free on an uninitialized pointer, leading to a segmentation fault and...

5.5CVSS7.1AI score0.01078EPSS
Exploits0References13
OSV
OSV
added 2026/05/26 7:31 p.m.11 views

JLSEC-2026-534

jp2/opjdecompress.c in OpenJPEG through 2.3.1 has a use-after-free that can be triggered if there is a mix of valid and invalid files in a directory operated on by the decompressor. Triggering a double-free may also be possible. This is related to calling opjimagedestroy twice...

6.5CVSS6.9AI score0.02595EPSS
Exploits0References14
OSV
OSV
added 2026/05/26 7:31 p.m.13 views

JLSEC-2026-546

A heap-based buffer overflow was found in openjpeg in color.c:379:42 in sycc420torgb when decompressing a crafted .j2k file. An attacker could use this to execute arbitrary code with the permissions of the application compiled against openjpeg...

7.8CVSS7.3AI score0.01536EPSS
Exploits1References11
OSV
OSV
added 2026/05/26 7:31 p.m.21 views

JLSEC-2026-542

There's a flaw in src/lib/openjp2/pi.c of openjpeg in versions prior to 2.4.0. If an attacker is able to provide untrusted input to openjpeg's conversion/encoding functionality, they could cause an out-of-bounds read. The highest impact of this flaw is to application availability...

5.5CVSS6.6AI score0.01443EPSS
Exploits0References14
OSV
OSV
added 2026/05/26 7:31 p.m.17 views

JLSEC-2026-533

In OpenJPEG 2.3.1, there is excessive iteration in the opjt1encodecblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file. This issue is similar to CVE-2018-6616...

5.5CVSS6.7AI score0.02596EPSS
Exploits0References18
OSV
OSV
added 2026/05/26 7:31 p.m.10 views

JLSEC-2026-550

A flaw was found in OpenJPEG. A resource exhaustion can occur in the opjt1decodecblks function in tcd.c through a crafted image file, causing a denial of service...

6.5CVSS6.5AI score0.00559EPSS
Exploits0References5
OSV
OSV
added 2026/05/26 7:31 p.m.10 views

JLSEC-2026-551

openjpeg v 2.5.0 was discovered to contain a NULL pointer dereference via the component /openjp2/dwt.c...

6.5CVSS6.9AI score0.00242EPSS
Exploits0References2
OSV
OSV
added 2026/05/26 7:31 p.m.12 views

JLSEC-2026-540

A flaw was found in OpenJPEG in versions prior to 2.4.0. This flaw allows an attacker to provide specially crafted input to the conversion or encoding functionality, causing an out-of-bounds read. The highest threat from this vulnerability is system availability...

7.1CVSS6.5AI score0.01682EPSS
Exploits0References14
OSV
OSV
added 2026/05/26 7:31 p.m.12 views

JLSEC-2026-543

OpenJPEG through 2.3.1 has a heap-based buffer overflow in opjt1clbldecodeprocessor in openjp2/t1.c because of lack of opjj2kupdateimagedimensions validation...

7.5CVSS7.1AI score0.04932EPSS
Exploits1References20
OSV
OSV
added 2026/05/26 7:31 p.m.17 views

JLSEC-2026-538

There's a flaw in openjpeg in versions prior to 2.4.0 in src/lib/openjp2/pi.c. When an attacker is able to provide crafted input to be processed by the openjpeg encoder, this could cause an out-of-bounds read. The greatest impact from this flaw is to application availability...

5.5CVSS5.8AI score0.01384EPSS
Exploits0References14
OSV
OSV
added 2026/05/26 7:31 p.m.13 views

JLSEC-2026-539

There's a flaw in openjpeg's t2 encoder in versions prior to 2.4.0. An attacker who is able to provide crafted input to be processed by openjpeg could cause a null pointer dereference. The highest impact of this flaw is to application availability...

5.5CVSS6.6AI score0.01443EPSS
Exploits0References14
OSV
OSV
added 2026/05/26 7:31 p.m.16 views

JLSEC-2026-545

Integer Overflow in OpenJPEG v2.4.0 allows remote attackers to crash the application, causing a Denial of Service DoS. This occurs when the attacker uses the command line option "-ImgDir" on a directory that contains 1048576 files...

5.5CVSS7AI score0.0156EPSS
Exploits1References11
OSV
OSV
added 2026/05/26 7:31 p.m.11 views

JLSEC-2026-552

OpenJPEG is an open-source JPEG 2000 codec. In OpenJPEG from 2.5.1 through 2.5.3, a call to opjjp2readheader may lead to OOB heap memory write when the data stream pstream is too short and pimage is not initialized...

7.5CVSS6AI score0.00599EPSS
Exploits1References3
OSV
OSV
added 2026/05/26 7:31 p.m.10 views

JLSEC-2026-548

A flaw was found in OpenJPEG. Maliciously constructed pictures can cause the program to enter a large loop and continuously print warning messages on the terminal...

4.3CVSS6.5AI score0.00528EPSS
Exploits0References5
Rows per page
Query Builder