11 matches found
Astra Linux - уязвимость в openjpeg2
A heap-based buffer overflow was detected in openjpeg, specifically at line 379:42 in color.c:420 when decompressing a specially crafted .j2k file. An attacker could exploit this vulnerability to execute arbitrary code with the permissions of the application compiled against openjpeg...
Huawei EulerOS: Security Advisory for openjpeg2 (EulerOS-SA-2026-1134)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
AlmaLinux 10 : openjpeg2 (ALSA-2025:13944)
The remote AlmaLinux 10 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:13944 advisory. openjpeg: OpenJPEG OOB heap memory write CVE-2025-54874 Tenable has extracted the preceding description block directly from the AlmaLinux security advisory. Note...
AZL-67722 CVE-2025-9900 affecting package openjpeg2 2.3.1-12
A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controll...
AZL-59467 CVE-2025-29070 affecting package openjpeg2 2.3.1-12
A heap buffer overflow vulnerability has been identified in thesmooth2 in cmsgamma.c in lcms2-2.16 which allows a remote attacker to cause a denial of service. NOTE: the Supplier disputes this because "this is not exploitable as this function is never called on normal color management, is there...
Medium: openjpeg2
Issue Overview: openjpeg: heap buffer overflow in lib/openjp2/j2k.c CVE-2024-56827 Affected Packages: openjpeg2 Issue Correction: Run dnf update openjpeg2 --releasever 2023.6.20250303 or dnf update --advisory ALAS2023-2025-875 --releasever 2023.6.20250303 to update your system. More information o...
Security update for openjpeg2
This update for openjpeg2 fixes the following issues: CVE-2024-56826: Fixed heap buffer overflow in bin/common/color.c bsc1235029 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...
SUSE CVE-2016-9580
An integer overflow vulnerability was found in tiftoimage function in openjpeg 2.1.2, resulting in heap buffer overflow...
PT-2021-7871 · Openjpeg2 +11 · Openjpeg2 +11
Name of the Vulnerable Software and Affected Versions: openjpeg2 version 2.4.0 Description: A flaw was found in the opj2 decompress program in the way it handles an input directory with a large number of files. When it fails to allocate a buffer to store the filenames of the input directory, it...
openjpeg: heap-based buffer overflow in pj_t1_clbl_decode_processor in openjp2/t1.c
A heap-based buffer overflow flaw was found in the opjt1clbldecodeprocessor in openjpeg2. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...
AZL-44883 CVE-2016-10087 affecting package openjpeg2 2.3.1-12
The pngsettext2 function in libpng 0.71 before 1.0.67, 1.2.x before 1.2.57, 1.4.x before 1.4.20, 1.5.x before 1.5.28, and 1.6.x before 1.6.27 allows context-dependent attackers to cause a NULL pointer dereference vectors involving loading a text chunk into a png structure, removing the text, and...