szukw000/openjpeg

szukw000/openjpeg

Releases22
Frequency9 months 1 week
Last Release
Official repository of the OpenJPEG project

CVE History

CVEAffectedPublishedCVSS v3CVSS v2
= 2.1.24.3 MEDIUM

A NULL pointer dereference flaw was found in the way openjpeg 2.1.2 decoded certain input images. Due to a logic error in the code responsible for decoding the input image, an application using openjpeg to process image data could crash when processing a crafted image.

= 2.1.26.8 MEDIUM

An integer overflow vulnerability was found in tiftoimage function in openjpeg 2.1.2, resulting in heap buffer overflow.

= 2.1.26.8 MEDIUM

An infinite loop vulnerability in tiftoimage that results in heap buffer overflow in convert_32s_C1P1 was found in openjpeg 2.1.2.

= 2.1.25.8 MEDIUM

An out-of-bounds read vulnerability was found in OpenJPEG 2.1.2, in the j2k_to_image tool. Converting a specially crafted JPEG2000 file to another format could cause the application to crash or, potentially, disclose some data from the heap.