CVE-2020-27844 log

Source
Severity Medium
Remote No
Type Arbitrary code execution
Description
A heap-based buffer overflow was discovered in lib/openjp2/t2.c:973 in the current master (commit 18b1138fbe3bb0ae4aa2bf1369f9430a8ec6fa00) of OpenJPEG.
Group Package Affected Fixed Severity Status Ticket
AVG-1634 opera 74.0.3911.218-1 75.0.3969.149-1 High Fixed
AVG-1633 vivaldi 3.6.2165.40-1 3.7.2218.45-1 High Fixed
AVG-1631 chromium 88.0.4324.182-1 89.0.4389.72-1 High Fixed
AVG-1361 openjpeg2 2.3.1-3 Medium Not affected
Date Advisory Group Package Severity Type
25 Mar 2021 ASA-202103-19 AVG-1633 vivaldi High multiple issues
References
https://github.com/uclouvain/openjpeg/issues/1299
https://github.com/uclouvain/openjpeg/pull/1301
https://github.com/uclouvain/openjpeg/commit/73fdf28342e4594019af26eb6a347a34eceb6296
Notes
According to the description of commit 73fdf28342e4594019af26eb6a347a34eceb6296, this issue is probably not present in any released version of OpenJPEG.