AVG-1390 log

Package openjpeg2
Status Fixed
Severity Medium
Type multiple issues
Affected 2.4.0-1
Fixed 2.5.0-1
Current 2.5.3-1 [extra]
Ticket None
Created Tue Dec 29 11:13:58 2020
Advisory Pending
Issue Severity Remote Type Description
CVE-2021-29338 Low Yes Denial of service
Integer Overflow in OpenJPEG v2.4.0 allows remote attackers to crash the application, causing a Denial of Service (DoS). This occurs when the attacker uses...
CVE-2019-6988 Low Yes Denial of service
An issue has been discovered in OpenJPEG 2.4.0. It allows remote attackers to cause a denial of service (attempted excessive memory allocation) in...
CVE-2018-20846 Low Yes Denial of service
Out-of-bounds accesses in the functions pi_next_lrcp, pi_next_rlcp, pi_next_rpcl, pi_next_pcrl, pi_next_rpcl, and pi_next_cprl in openmj2/pi.c in OpenJPEG...
CVE-2018-16376 Medium Yes Arbitrary code execution
An issue was discovered in OpenJPEG 2.4.0. A heap-based buffer overflow was discovered in the function t2_encode_packet in lib/openmj2/t2.c. The...