Published: 30/10/2016 Updated: 09/09/2020

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 5.3 | Impact Score: 1.4 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Heap Buffer Overflow (WRITE of size 4) in function pnmtoimage of convert.c:1719 in OpenJPEG 2.1.2.

Vulnerable Product	Search on Vulmon	Subscribe to Product
uclouvain openjpeg 2.1.2

Debian Bug report logs - #844557 openjpeg2: CVE-2016-9118 Package: src:openjpeg2; Maintainer for src:openjpeg2 is Debian PhotoTools Maintainers <pkg-phototools-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 16 Nov 2016 20:33:05 UTC Severity: important Tags: fixed-upst ...

Multiple vulnerabilities in OpenJPEG, a JPEG 2000 image compression / decompression library, may result in denial of service or the execution of arbitrary code if a malformed JPEG 2000 file is processed For the oldstable distribution (jessie), these problems have been fixed in version 210-2+deb8u3 For the stable distribution (stretch), these pr ...

Heap Buffer Overflow (WRITE of size 4) in function pnmtoimage of convertc:1719 in OpenJPEG 212 ...

A heap buffer overflow (WRITE of size 4) has been discovered in the pnmtoimage function of convertc:1719 in OpenJPEG 212 An attacker could create a malicious file that, when processed, could cause a crash or potentially code execution ...

CWE-119 https://github.com/uclouvain/openjpeg/issues/861 http://www.securityfocus.com/bid/93976 https://security.gentoo.org/glsa/201710-26 http://www.debian.org/security/2017/dsa-4013 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844557 https://nvd.nist.gov https://www.debian.org/security/./dsa-4013 https://access.redhat.com/security/cve/cve-2016-9118

CVE-2016-9118

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect