5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.003 Low
EPSS
Percentile
67.3%
The bmp_read_info_header function in bin/jp2/convertbmp.c in OpenJPEG 2.2.0
does not reject headers with a zero biBitCount, which allows remote
attackers to cause a denial of service (memory allocation failure) in the
opj_image_create function in lib/openjp2/image.c, related to the
opj_aligned_alloc_n function in opj_malloc.c.
Author | Note |
---|---|
ccdm94 | openjpeg is not affected by this issue since the variable which was not checked for value 0 is checked in the 1.x versions. The code was refactored in versions 2.x, and this check was removed, causing the vulnerability. In versions 1.x, variable Info_h.biBitCount is checked for values 24 and 8, and if not equal to one of them, the converter returns an error message instead of processing the image file given as input. In versions 1.x of openjpeg, the function that contains similar code to the vulnerable one in versions 2.x can be found in file convert.c. The reproducer does not cause the memory allocation failure error in versions 1.x. |
blogs.gentoo.org/ago/2017/08/14/openjpeg-memory-allocation-failure-in-opj_aligned_alloc_n-opj_malloc-c/
launchpad.net/bugs/cve/CVE-2017-12982
nvd.nist.gov/vuln/detail/CVE-2017-12982
security-tracker.debian.org/tracker/CVE-2017-12982
ubuntu.com/security/notices/USN-4782-1
www.cve.org/CVERecord?id=CVE-2017-12982
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.003 Low
EPSS
Percentile
67.3%