CVE-2020-8112 - log back

CVE-2020-8112 edited at 29 Dec 2020 11:17:12
Description
- opj_t1_clbl_decode_processor in openjp2/t1.c in OpenJPEG 2.3.1 through 2020-01-28 has a heap-based buffer overflow in the qmfbid==1 case, a different issue than CVE-2020-6851.
+ opj_t1_clbl_decode_processor in openjp2/t1.c in OpenJPEG before version 2.4.0 has a heap-based buffer overflow in the qmfbid==1 case, a different issue than CVE-2020-6851.
CVE-2020-8112 edited at 11 Dec 2020 13:01:02
References
https://github.com/uclouvain/openjpeg/issues/1231
https://github.com/uclouvain/openjpeg/pull/1232
- https://github.com/rouault/openjpeg/commit/05f9b91e60debda0e83977e5e63b2e66486f7074
+ https://github.com/uclouvain/openjpeg/commit/05f9b91e60debda0e83977e5e63b2e66486f7074
CVE-2020-8112 edited at 10 Dec 2020 13:41:12
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Arbitrary code execution
CVE-2020-8112 edited at 10 Dec 2020 13:39:18
Description
+ opj_t1_clbl_decode_processor in openjp2/t1.c in OpenJPEG 2.3.1 through 2020-01-28 has a heap-based buffer overflow in the qmfbid==1 case, a different issue than CVE-2020-6851.
References
+ https://github.com/uclouvain/openjpeg/issues/1231
+ https://github.com/uclouvain/openjpeg/pull/1232
+ https://github.com/rouault/openjpeg/commit/05f9b91e60debda0e83977e5e63b2e66486f7074
CVE-2020-8112 created at 10 Dec 2020 13:38:07
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes