Lucene search
K

71 matches found

OSV
OSV
added 2021/06/22 11:2 a.m.3 views

OESA-2021-1234 openjpeg2 security update

OpenJPEG is an open-source JPEG 2000 codec written in C language. It has been developed in order to promote the use of JPEG 2000, a still-image compression standard from the Joint Photographic Experts Group JPEG. Since April 2015, it is officially recognized by ISO/IEC and ITU-T as a JPEG 2000...

8.8CVSS7.3AI score0.04932EPSS
Exploits2References5
OSV
OSV
added 2021/05/13 2:15 p.m.1 views

DEBIAN-CVE-2020-27824

A flaw was found in OpenJPEG’s encoder in the opjdwtcalcexplicitstepsizes function. This flaw allows an attacker who can supply crafted input to decomposition levels to cause a buffer overflow. The highest threat from this vulnerability is to system availability...

5.5CVSS7.1AI score0.0161EPSS
Exploits0References1
OSV
OSV
added 2021/05/13 2:15 p.m.4 views

ALPINE-CVE-2020-27824

A flaw was found in OpenJPEG’s encoder in the opjdwtcalcexplicitstepsizes function. This flaw allows an attacker who can supply crafted input to decomposition levels to cause a buffer overflow. The highest threat from this vulnerability is to system availability...

5.5CVSS6.8AI score0.0161EPSS
Exploits0References1
Veracode
Veracode
added 2020/12/23 4:51 p.m.43 views

Denial Of Service (DoS)

libopenjpeg.so is vulnerable to denial of service. The vulnerability exists in opjdwtcalcexplicitstepsizes function of dwt.c due to buffer overflow which allows an attacker to crash the application via malicious input...

5.5CVSS6.4AI score0.0161EPSS
Exploits0References13Affected Software3
OSV
OSV
added 2020/12/10 12:0 a.m.2 views

UBUNTU-CVE-2020-27824

A flaw was found in OpenJPEG’s encoder in the opjdwtcalcexplicitstepsizes function. This flaw allows an attacker who can supply crafted input to decomposition levels to cause a buffer overflow. The highest threat from this vulnerability is to system availability...

5.5CVSS7.2AI score0.0161EPSS
Exploits0References7
NVD
NVD
added 2020/12/02 6:15 p.m.40 views

CVE-2020-13493

A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. A specially crafted USDC file format path jumps decompression heap overflow in a way path jumps are processed. To trigger this vulnerability, the victim needs to open an...

8.8CVSS8AI score0.0133EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
added 2016/06/22 12:0 a.m.35 views

Microsoft Windows PDF Library JPEG2000 COD Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows a remote attacker to disclose sensitive information on vulnerable installations of Microsoft Windows PDF Library. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

4.3CVSS1.5AI score0.33569EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2016/02/12 12:0 a.m.6 views

The vulnerability of the FFmpeg multimedia library, which allows a intruder to trigger a service failure or cause other effects

The vulnerability of the ffdwtdecode function libavcodec/jpeg2000dwt.c in the multimedia library FFmpeg exists due to the lack of checks for the number of decomposition levels before performing the discrete wavelet transformation. Exploiting this vulnerability could allow a malicious actor to cau...

7.5CVSS7.2AI score0.01913EPSS
Exploits0References2Affected Software1
myhack58
myhack58
added 2016/02/04 12:0 a.m.14 views

OpenSSL CVE-2 0 1 6-0 7 0 1 Private Key Recovery attack vulnerability analysis-vulnerability warning-the black bar safety net

by: au2o3t @3 6 0 Cloud Security Team 0x01 Foreword 2 0 1 6 1 2 8, OpenSSL official published number for the CVE-2 0 1 6-0 7 0 1 vulnerabilities. The vulnerability occurs in the OpenSSL 1.0.2 versionOpenSSL 1.0.2 f and later versions not affected, when using the DH algorithm to a different client...

Exploits0
OSV
OSV
added 2015/12/24 1:59 a.m.2 views

DEBIAN-CVE-2015-8662

The ffdwtdecode function in libavcodec/jpeg2000dwt.c in FFmpeg before 2.8.4 does not validate the number of decomposition levels before proceeding with Discrete Wavelet Transform decoding, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have...

7.3CVSS9.2AI score0.01913EPSS
Exploits0References1
OSV
OSV
added 2015/12/24 1:59 a.m.5 views

UBUNTU-CVE-2015-8662

The ffdwtdecode function in libavcodec/jpeg2000dwt.c in FFmpeg before 2.8.4 does not validate the number of decomposition levels before proceeding with Discrete Wavelet Transform decoding, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have...

7.3CVSS7.2AI score0.01913EPSS
Exploits0References2
Rows per page
Query Builder