CVE-2020-27842 - log back

CVE-2020-27842 edited at 29 Dec 2020 11:19:19
Description
- A null pointer dereference issue was found in lib/openjp2/tgt.c when a small precincts size, the option "-TP C" and non (0,0) grid offset are given in OpenJPEG 2.3.1.
+ A null pointer dereference issue was found in lib/openjp2/tgt.c when a small precincts size, the option "-TP C" and non (0,0) grid offset are given in OpenJPEG before version 2.4.0.
CVE-2020-27842 created at 15 Dec 2020 13:58:13
Severity
+ Medium
Remote
+ Local
Type
+ Denial of service
Description
+ A null pointer dereference issue was found in lib/openjp2/tgt.c when a small precincts size, the option "-TP C" and non (0,0) grid offset are given in OpenJPEG 2.3.1.
References
+ https://github.com/uclouvain/openjpeg/issues/1294
+ https://github.com/uclouvain/openjpeg/pull/1296
+ https://github.com/uclouvain/openjpeg/commit/fbd30b064f8f9607d500437b6fedc41431fd6cdc
Notes