Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2020-27844 - log back

CVE-2020-27844 edited at 15 Dec 2020 14:09:33

Notes

+	According to the description of commit 73fdf28342e4594019af26eb6a347a34eceb6296, this issue is probably not present in any released version of OpenJPEG.

CVE-2020-27844 created at 15 Dec 2020 13:47:49

Severity

+

Medium

Remote

+

Local

Type

+	Arbitrary code execution

Description

+	A heap-based buffer overflow was discovered in lib/openjp2/t2.c:973 in the current master (commit 18b1138fbe3bb0ae4aa2bf1369f9430a8ec6fa00) of OpenJPEG.

References

+	https://github.com/uclouvain/openjpeg/issues/1299
+	https://github.com/uclouvain/openjpeg/pull/1301
+	https://github.com/uclouvain/openjpeg/commit/73fdf28342e4594019af26eb6a347a34eceb6296

Notes