Openjpeg@* Security Vulnerabilities and Issues — Openjpeg@* CVE List

Lucene search

UclouvainOpenjpeg*

5 matches found

CVE•added 2016/09/21 2:25 p.m.•79 views

CVE-2016-7163

Integer overflow in the opj_pi_create_decode function in pi.c in OpenJPEG allows remote attackers to execute arbitrary code via a crafted JP2 file, which triggers an out-of-bounds read or write.

7.8CVSS8AI score0.00443EPSS

CVE•added 2016/09/21 2:25 p.m.•73 views

CVE-2015-8871

Use-after-free vulnerability in the opj_j2k_write_mco function in j2k.c in OpenJPEG before 2.1.1 allows remote attackers to have unspecified impact via unknown vectors.

9.8CVSS6.5AI score0.02727EPSS

CVE•added 2016/12/22 9:59 p.m.•73 views

CVE-2016-9675

openjpeg: A heap-based buffer overflow flaw was found in the patch for CVE-2013-6045. A crafted j2k image could cause the application to crash, or potentially execute arbitrary code.

7.8CVSS8.1AI score0.06297EPSS

CVE•added 2016/01/27 8:59 p.m.•59 views

CVE-2016-1924

The opj_tgt_reset function in OpenJpeg 2016.1.18 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted JPEG 2000 image.

6.5CVSS5.6AI score0.00608EPSS

CVE•added 2016/10/03 4:9 p.m.•58 views

CVE-2016-7445

convert.c in OpenJPEG before 2.1.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors involving the variable s.

7.5CVSS5.9AI score0.02039EPSS