CVE-2018-6616

Published February 4th, 2018

View on NVD ↗

CVSS v3

5.5

MEDIUM

CVSS v2

4.3

MEDIUM

Affected

PROJECT

Description

In OpenJPEG 2.3.0, there is excessive iteration in the opj_t1_encode_cblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file.

uclouvain/openjpeg

Official repository of the OpenJPEG project

GitHub

1.11K