Openjpeg@1.5 Security Vulnerabilities and Issues — Openjpeg@1.5 CVE List

Lucene search

UclouvainOpenjpeg1.5

4 matches found

CVE•added 2012/07/18 11:55 p.m.•76 views

CVE-2012-3358

Multiple heap-based buffer overflows in the j2k_read_sot function in j2k.c in OpenJPEG 1.5 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted (1) tile number or (2) tile length in a JPEG 2000 image file.

10CVSS7.6AI score0.04464EPSS

CVE•added 2012/07/18 10:55 p.m.•69 views

CVE-2009-5030

The tcd_free_encode function in tcd.c in OpenJPEG 1.3 through 1.5 allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via crafted tile information in a Gray16 TIFF image, which causes insufficient memory to be allocated and leads to an "inval...

6.8CVSS7.4AI score0.04533EPSS

CVE•added 2014/04/18 2:55 p.m.•36 views

CVE-2013-4289

Multiple integer overflows in lib/openjp3d/jp3d.c in OpenJPEG before 1.5.2 allow remote attackers to have unspecified impact and vectors, which trigger a heap-based buffer overflow.

10CVSS8.8AI score0.02308EPSS

CVE•added 2014/04/18 2:55 p.m.•36 views

CVE-2013-4290

Stack-based buffer overflow in OpenJPEG before 1.5.2 allows remote attackers to have unspecified impact via unknown vectors to (1) lib/openjp3d/opj_jp3d_compress.c, (2) bin/jp3d/convert.c, or (3) lib/openjp3d/event.c.

10CVSS8.9AI score0.01714EPSS