AVG-2850 log
| Package | openjpeg2 |
| Status | Vulnerable |
| Severity | Medium |
| Type | arbitrary code execution |
| Affected | 2.5.0-3 |
| Fixed | Unknown |
| Current | 2.5.4-1 [extra] |
| Ticket | Create |
| Created | Fri Nov 10 16:22:10 2023 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-3575 | Medium | Yes | Arbitrary code execution | A heap-based buffer overflow was found in openjpeg in color.c:379:42 in sycc420_to_rgb when decompressing a crafted .j2k file. An attacker could use this to... |