2 matches found
CVE-2019-5144
An exploitable heap underflow vulnerability exists in the derivetapsandgains function in kduv7ar.dll of Kakadu Software SDK 7.10.2. A specially crafted jp2 file can cause a heap overflow, which can result in remote code execution. An attacker could provide a malformed file to the victim to trigge...
Kakadu Software SDK Numeric Error Vulnerability
Kakadu Software SDK is a set of JPEG2000 software development kits SDK from Kakadu Software, Australia. A numeric error vulnerability exists in the 'derivetapsandgains' function of the kduv7ar.dll file in version 7.10.2 of the Kakadu Software SDK, which arises from a networked system or product...