CVE-2021-3575 - log back

CVE-2021-3575 edited at 09 Jun 2021 08:05:02
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Remote
Type
- Unknown
+ Arbitrary code execution
Description
+ A heap-based buffer overflow was found in openjpeg in color.c:379:42 in sycc420_to_rgb when decompressing a crafted .j2k file. An attacker could use this to execute arbitrary code with the permissions of the application compiled against openjpeg.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1957616
+ https://github.com/uclouvain/openjpeg/issues/1347
CVE-2021-3575 created at 09 Jun 2021 08:03:19
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes