Lucene search
K

23 matches found

OSV
OSV
added 2025/08/12 8:24 a.m.1 views

ROOT-OS-DEBIAN-12-CVE-2021-3575 CVE-2021-3575 in rootio-openjpeg2 - Patched by Root

Root has patched CVE-2021-3575 in the rootio-openjpeg2 package for Root:Debian:12. Multiple fixed versions available...

7.8CVSS5.4AI score0.01536EPSS
Exploits1
OpenVAS
OpenVAS
added 2025/08/06 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for openjpeg2 (EulerOS-SA-2025-1846)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.7AI score0.01536EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/08/06 12:0 a.m.4 views

Huawei EulerOS: Security Advisory for openjpeg2 (EulerOS-SA-2025-1865)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.7AI score0.01536EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.4 views

TencentOS Server 4: openjpeg2 (TSSA-2024:0164)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0164 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

7.8CVSS7.6AI score0.0156EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2021-3575

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap-based buffer overflow was found in openjpeg in color.c:379:42 in sycc420torgb when decompressing a crafted .j2k file. An attacker could use this to execu...

7.8CVSS7.3AI score0.01536EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/01/28 12:0 a.m.21 views

Debian: Security Advisory (DSA-5851-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.1AI score0.01536EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/02/27 12:0 a.m.20 views

Slackware: Security Advisory (SSA:2024-057-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.01536EPSS
Exploits1References3
Slackware Linux
Slackware Linux
added 2024/02/26 8:17 p.m.35 views

[slackware-security] openjpeg

New openjpeg packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/openjpeg-2.5.1-i586-1slack15.0.txz: Upgraded. Fixed a heap-based buffer overflow in openjpeg in color.c:379:42 in sycc420torgb when...

7.8CVSS8.6AI score0.01536EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/02/26 12:0 a.m.26 views

Slackware Linux 15.0 / current openjpeg Vulnerability (SSA:2024-057-01)

The version of openjpeg installed on the remote host is prior to 2.5.1. It is, therefore, affected by a vulnerability as referenced in the SSA:2024-057-01 advisory. - A heap-based buffer overflow was found in openjpeg in color.c:379:42 in sycc420torgb when decompressing a crafted .j2k file. An...

7.8CVSS7.7AI score0.01536EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/03/22 12:0 a.m.54 views

Amazon Linux 2 : openjpeg (ALAS-2023-1999)

The version of openjpeg installed on the remote host is prior to 1.5.1-19. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-1999 advisory. A heap-based buffer overflow was found in OpenJPEG. This flaw allows an attacker to execute arbitrary code with the permissions o...

7.8CVSS7.6AI score0.01536EPSS
Exploits1References4
Amazon
Amazon
added 2023/03/21 12:0 a.m.34 views

Medium: openjpeg

Issue Overview: A heap-based buffer overflow was found in OpenJPEG. This flaw allows an attacker to execute arbitrary code with the permissions of the application compiled against OpenJPEG. CVE-2021-3575 Affected Packages: openjpeg Note: This advisory is applicable to Amazon Linux 2 AL2 Core...

7.8CVSS7.8AI score0.01536EPSS
Exploits1
NVD
NVD
added 2022/03/04 6:15 p.m.18 views

CVE-2021-3575

A heap-based buffer overflow was found in openjpeg in color.c:379:42 in sycc420torgb when decompressing a crafted .j2k file. An attacker could use this to execute arbitrary code with the permissions of the application compiled against openjpeg...

7.8CVSS0.01536EPSS
Exploits1References6
OSV
OSV
added 2022/03/04 6:15 p.m.29 views

CVE-2021-3575

A heap-based buffer overflow was found in openjpeg in color.c:379:42 in sycc420torgb when decompressing a crafted .j2k file. An attacker could use this to execute arbitrary code with the permissions of the application compiled against openjpeg...

7.8CVSS5AI score0.01536EPSS
Exploits1References6
CVE
CVE
added 2022/03/04 5:20 p.m.212 views

CVE-2021-3575

OpenJPEG OpenJPEG2 vulnerability CVE-2021-3575 is a heap-based buffer overflow in color.c:379:42 (sycc420_to_rgb) when decompressing a crafted J2K image, enabling arbitrary code execution with the attacker’s permissions. Multiple connected advisories confirm the flaw in the OpenJPEG library and l...

7.8CVSS7.9AI score0.01536EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2022/03/04 5:20 p.m.35 views

CVE-2021-3575

A heap-based buffer overflow was found in openjpeg in color.c:379:42 in sycc420torgb when decompressing a crafted .j2k file. An attacker could use this to execute arbitrary code with the permissions of the application compiled against openjpeg...

8.2AI score0.01536EPSS
Exploits1References5
AlpineLinux
AlpineLinux
added 2022/03/04 5:20 p.m.39 views

CVE-2021-3575

A heap-based buffer overflow was found in openjpeg in color.c:379:42 in sycc420torgb when decompressing a crafted .j2k file. An attacker could use this to execute arbitrary code with the permissions of the application compiled against openjpeg...

7.8CVSS8.1AI score0.01536EPSS
Exploits1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.22 views

Mageia: Security Advisory (MGASA-2021-0292)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.01536EPSS
Exploits1References4
Oracle linux
Oracle linux
added 2021/11/16 12:0 a.m.54 views

openjpeg2 security update

2.4.0-4 - Fix Covscan defect 2.4.0-3 - Fix CVE-2021-3575 1969279 - Fix resource leak identified by Covscan 2.4.0-2 - Fix CVE-2021-29338 1951332 2.4.0-1 - Rebase to 2.4.0 - Resolves: CVE-2018-5727 1538467 - Resolves: CVE-2018-5785 1538556 - Resolves: CVE-2018-20845 1730679 - Resolves: CVE-2018-208...

8.8CVSS7.2AI score0.02596EPSS
Exploits5
RedHat Linux
RedHat Linux
added 2021/11/09 5:42 p.m.50 views

Moderate: Red Hat Security Advisory: openjpeg2 security update

An update for openjpeg2 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

8.8CVSS7.3AI score0.02596EPSS
Exploits5References16
OSV
OSV
added 2021/11/09 8:51 a.m.41 views

RLSA-2021:4251 Moderate: openjpeg2 security update

OpenJPEG is an open source library for reading and writing image files in JPEG2000 format. The following packages have been upgraded to a later upstream version: openjpeg2 2.4.0. Security Fixes: openjpeg: use-after-free and double-free via a mix of valid and invalid files in a directory operated ...

7.8CVSS8.5AI score0.02596EPSS
Exploits5References15
Rows per page
Query Builder