Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
uclouvain openjpeg vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2016-3182
The color_esycc_to_rgb function in bin/common/color.c in OpenJPEG prior to 2.1.1 allows malicious users to cause a denial of service (memory corruption) via a crafted jpeg 2000 file.
Uclouvain Openjpeg
5.5
CVSSv3
CVE-2019-12973
In OpenJPEG 2.3.1, there is excessive iteration in the opj_t1_encode_cblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file. This issue is similar to CVE-2018-6616.
Uclouvain Openjpeg 2.3.1
Opensuse Leap 15.0
Opensuse Leap 15.1
Debian Debian Linux 9.0
Oracle Database Server 18c
Oracle Outside In Technology 8.5.4
Oracle Outside In Technology 8.5.5
5.5
CVSSv3
CVE-2018-6616
In OpenJPEG 2.3.0, there is excessive iteration in the opj_t1_encode_cblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file.
Uclouvain Openjpeg 2.3.0
Debian Debian Linux 9.0
Debian Debian Linux 8.0
Canonical Ubuntu Linux 18.04
Oracle Georaster 18c
5.5
CVSSv3
CVE-2017-12982
The bmp_read_info_header function in bin/jp2/convertbmp.c in OpenJPEG 2.2.0 does not reject headers with a zero biBitCount, which allows remote malicious users to cause a denial of service (memory allocation failure) in the opj_image_create function in lib/openjp2/image.c, relate...
Uclouvain Openjpeg
5.5
CVSSv3
CVE-2016-3183
The sycc422_t_rgb function in common/color.c in OpenJPEG prior to 2.1.1 allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted jpeg2000 file.
Uclouvain Openjpeg
5.5
CVSSv3
CVE-2016-4796
Heap-based buffer overflow in the color_cmyk_to_rgb in common/color.c in OpenJPEG prior to 2.1.1 allows remote malicious users to cause a denial of service (crash) via a crafted .j2k file.
Uclouvain Openjpeg
Fedoraproject Fedora 24
Fedoraproject Fedora 23
5.5
CVSSv3
CVE-2016-4797
Divide-by-zero vulnerability in the opj_tcd_init_tile function in tcd.c in OpenJPEG prior to 2.1.1 allows remote malicious users to cause a denial of service (application crash) via a crafted jp2 file. NOTE: this issue exists because of an incorrect fix for CVE-2014-7947.
Uclouvain Openjpeg
Fedoraproject Fedora 24
Fedoraproject Fedora 23
5.3
CVSSv3
CVE-2016-9118
Heap Buffer Overflow (WRITE of size 4) in function pnmtoimage of convert.c:1719 in OpenJPEG 2.1.2.
Uclouvain Openjpeg 2.1.2
NA
CVE-2013-6053
OpenJPEG 1.5.1 allows remote malicious users to obtain sensitive information via unspecified vectors that trigger a heap-based out-of-bounds read.
Uclouvain Openjpeg 1.5.1
NA
CVE-2013-6887
OpenJPEG 1.5.1 allows remote malicious users to cause a denial of service via unspecified vectors that trigger NULL pointer dereferences, division-by-zero, and other errors.
Uclouvain Openjpeg 1.5.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »