openjpeg2

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description An open source JPEG 2000 codec, version 2.3.1
Version 2.3.1-1 [extra]

Open

Group Affected Fixed Severity Status Ticket
AVG-864 2.3.1-1 Low Vulnerable
Issue Group Severity Remote Type Description
CVE-2019-6988 AVG-864 Low Yes Denial of service
An issue has been discovered in OpenJPEG <= 2.3.0. It allows remote attackers to cause a denial of service (attempted excessive memory allocation) in...

Resolved

Group Affected Fixed Severity Status Ticket
AVG-54 2.1.2-2 2.2.0-1 High Fixed FS#54860
Issue Group Severity Remote Type Description
CVE-2016-9118 AVG-54 High Yes Arbitrary code execution
A heap buffer overflow (WRITE of size 4) has been discovered in the pnmtoimage function of convert.c:1719 in OpenJPEG 2.1.2. An attacker could create a...
CVE-2016-9117 AVG-54 Medium Yes Denial of service
A NULL pointer access has been discovered in the  imagetopnm function of convert.c(jp2):1289 in OpenJPEG 2.1.2. Opening a crafted j2k file leads to an...
CVE-2016-9116 AVG-54 Medium Yes Denial of service
A NULL pointer access has been discovered in the  imagetopnm function of convert.c:2226(jp2) in OpenJPEG 2.1.2. Opening a crafted j2k file leads to an...
CVE-2016-9115 AVG-54 Medium Yes Denial of service
A heap buffer over-read has been discovered in the imagetotga function of convert.c(jp2):942 in OpenJPEG 2.1.2. Opening a specially crafted j2k file is...
CVE-2016-9114 AVG-54 Medium Yes Denial of service
There is a NULL pointer access in the  imagetopnm function of convert.c:1943(jp2) of OpenJPEG 2.1.2. image->comps[compno].data is not assigned a value after...
CVE-2016-9113 AVG-54 Medium Yes Denial of service
There is a NULL pointer dereference in the imagetobmp function of convertbmp.c:980 of OpenJPEG 2.1.2. image->comps[0].data is not assigned a value after...