CVE-2020-27844 - log back

CVE-2020-27844 edited at 15 Dec 2020 14:09:33
Notes
+ According to the description of commit 73fdf28342e4594019af26eb6a347a34eceb6296, this issue is probably not present in any released version of OpenJPEG.
CVE-2020-27844 created at 15 Dec 2020 13:47:49
Severity
+ Medium
Remote
+ Local
Type
+ Arbitrary code execution
Description
+ A heap-based buffer overflow was discovered in lib/openjp2/t2.c:973 in the current master (commit 18b1138fbe3bb0ae4aa2bf1369f9430a8ec6fa00) of OpenJPEG.
References
+ https://github.com/uclouvain/openjpeg/issues/1299
+ https://github.com/uclouvain/openjpeg/pull/1301
+ https://github.com/uclouvain/openjpeg/commit/73fdf28342e4594019af26eb6a347a34eceb6296
Notes