---

CVE-2021-3575 - log back

CVE-2021-3575 edited at 09 Jun 2021 08:05:02
Severity	- Unknown + Medium
Remote	- Unknown + Remote
Type	- Unknown + Arbitrary code execution
Description	+ A heap-based buffer overflow was found in openjpeg in color.c:379:42 in sycc420_to_rgb when decompressing a crafted .j2k file. An attacker could use this to execute arbitrary code with the permissions of the application compiled against openjpeg.
References	+ https://bugzilla.redhat.com/show_bug.cgi?id=1957616 + https://github.com/uclouvain/openjpeg/issues/1347

CVE-2021-3575 created at 09 Jun 2021 08:03:19
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description
References
Notes