Lucene search
Veracode Vulnerability DatabaseVERACODE:10893HistoryJan 15, 2019 - 8:53 a.m.
Denial Of Service (DoS)
2019-01-1508:53:49
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
openjpeg is vulnerable to denial of service. A remote attacker is able to crash the process, or potentially execute arbitrary code in the context of the process worker, via a malicious OpenJPEG image to cause a heap-based buffer overflow.
| CPE | Name | Operator | Version |
|---|---|---|---|
| openjpeg | eq | 1.3__9.el6_3 | |
| openjpeg | eq | 1.3__8.el6_3 | |
| openjpeg | eq | 1.3__7.el6 |
References
Related
ubuntucve
ubuntucve
CVE-2013-1447
2013-12-12 00:00:00
CVE-2014-0158
2018-04-10 00:00:00
cve
cve
CVE-2013-1447
2013-12-12 18:55:00
CVE-2014-0158
2018-04-10 15:29:00
prion
prion
Null pointer dereference
2013-12-12 18:55:00
Heap overflow
2018-04-10 15:29:00
nessus
nessus
Fedora 20 : mingw-openjpeg-1.5.1-7.fc20 (2013-24059)
2014-01-06 00:00:00
Fedora 19 : mingw-openjpeg-1.5.1-7.fc19 (2013-24079)
2014-01-06 00:00:00
Amazon Linux AMI : openjpeg (ALAS-2014-271)
2014-02-05 00:00:00
redhat
redhat
(RHSA-2013:1850) Important: openjpeg security update
2013-12-17 00:00:00
openvas
openvas
CentOS Update for openjpeg CESA-2013:1850 centos6
2013-12-23 00:00:00
Amazon Linux: Security Advisory (ALAS-2014-271)
2015-09-08 00:00:00
Debian Security Advisory DSA 2808-1 (openjpeg - several vulnerabilities)
2013-12-03 00:00:00
debian
debian
[SECURITY] [DSA 2808-2] openjpeg regression update
2014-04-22 21:59:21
[SECURITY] [DSA 2808-1] openjpeg security update
2013-12-03 07:05:53
centos
centos
openjpeg security update
2013-12-17 19:00:24
osv
osv
openjpeg - several
2013-12-03 00:00:00
openjpeg - regression update
2013-12-03 00:00:00
amazon
amazon
Important: openjpeg
2014-01-14 15:55:00
oraclelinux
oraclelinux
openjpeg security update
2013-12-17 00:00:00
veracode
veracode
Heap-based Buffer Over-read
2019-05-02 05:00:50
Heap-based Buffer Over-read
2019-05-02 05:00:50
securityvulns
securityvulns
[SECURITY] [DSA 2808-1] openjpeg security update
2013-12-09 00:00:00
[ MDVSA-2014:008 ] openjpeg
2014-01-29 00:00:00
OpenJPEG library multiple security vulnerabilities
2014-01-29 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: mingw-openjpeg-1.5.1-7.fc19
2014-01-05 12:34:43
[SECURITY] Fedora 20 Update: openjpeg-1.5.1-8.fc20
2014-01-14 08:43:56
[SECURITY] Fedora 19 Update: openjpeg-1.5.1-13.fc19
2015-01-03 18:58:02
mageia
mageia
Updated openjpeg package fixes security vulnerabilities
2014-01-06 05:10:03
gentoo
gentoo
OpenJPEG: Multiple vulnerabilities
2014-12-13 00:00:00
freebsd
freebsd
openjpeg -- Multiple vulnerabilities
2012-05-13 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related for VERACODE:10893