CVE-2020-27841 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Medium
Remote	No
Type	Denial of service
Description	An out-of-bounds read was discovered in lib/openjp2/pi.c:623 in OpenJPEG before version 2.4.0.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-1339	openjpeg2	2.3.1-2	2.4.0-1	Medium	Fixed

Date	Advisory	Group	Package	Severity	Type
09 Dec 2020	ASA-202012-21	AVG-1339	openjpeg2	Medium	multiple issues

References
https://github.com/uclouvain/openjpeg/issues/1293 https://github.com/uclouvain/openjpeg/pull/1295 https://github.com/uclouvain/openjpeg/pull/1300 https://github.com/uclouvain/openjpeg/commit/c9380ed0f8cc4794fc71d556ea23ae61e32247af https://github.com/uclouvain/openjpeg/commit/00383e162ae2f8fc951f5745bf1011771acb8dce

References

https://github.com/uclouvain/openjpeg/issues/1293
https://github.com/uclouvain/openjpeg/pull/1295
https://github.com/uclouvain/openjpeg/pull/1300
https://github.com/uclouvain/openjpeg/commit/c9380ed0f8cc4794fc71d556ea23ae61e32247af
https://github.com/uclouvain/openjpeg/commit/00383e162ae2f8fc951f5745bf1011771acb8dce