CVE-2020-27841 log

Source
Severity Medium
Remote No
Type Denial of service
Description
An out-of-bounds read was discovered in lib/openjp2/pi.c:623 in OpenJPEG before version 2.4.0.
Group Package Affected Fixed Severity Status Ticket
AVG-1339 openjpeg2 2.3.1-2 2.4.0-1 Medium Fixed
Date Advisory Group Package Severity Type
09 Dec 2020 ASA-202012-21 AVG-1339 openjpeg2 Medium multiple issues
References
https://github.com/uclouvain/openjpeg/issues/1293
https://github.com/uclouvain/openjpeg/pull/1295
https://github.com/uclouvain/openjpeg/pull/1300
https://github.com/uclouvain/openjpeg/commit/c9380ed0f8cc4794fc71d556ea23ae61e32247af
https://github.com/uclouvain/openjpeg/commit/00383e162ae2f8fc951f5745bf1011771acb8dce