Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2016-9572

Published: 01/08/2018 Updated: 12/02/2023
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Subscribe to Openjpeg

Vulnerability Summary

A NULL pointer dereference flaw was found in the way openjpeg 2.1.2 decoded certain input images. Due to a logic error in the code responsible for decoding the input image, an application using openjpeg to process image data could crash when processing a crafted image.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

uclouvain openjpeg 2.1.2

debian debian linux 8.0

Vendor Advisories

Debian CVElist Bug Report Logs: openjpeg2: CVE-2016-9572 CVE-2016-9573
Debian Bug report logs - #851422 openjpeg2: CVE-2016-9572 CVE-2016-9573 Package: src:openjpeg2; Maintainer for src:openjpeg2 is Debian PhotoTools Maintainers <pkg-phototools-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 14 Jan 2017 18:51:01 UTC Severity: grave Tags: ...
Debian Security Advisories: DSA-3768-1 openjpeg2 -- security update
Multiple vulnerabilities in OpenJPEG, a JPEG 2000 image compression / decompression library, may result in denial of service or the execution of arbitrary code if a malformed JPEG 2000 file is processed For the stable distribution (jessie), these problems have been fixed in version 210-2+deb8u2 For the unstable distribution (sid), these problem ...
Red Hat: CVE-2016-9572
A NULL pointer dereference flaw was found in the way openjpeg 212 decoded certain input images Due to a logic error in the code responsible for decoding the input image, an application using openjpeg to process image data could crash when processing a crafted image ...

References

CWE-476https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-9572https://github.com/uclouvain/openjpeg/issues/863https://github.com/szukw000/openjpeg/commit/7b28bd2b723df6be09fe7791eba33147c1c47d0dhttps://www.debian.org/security/2017/dsa-3768https://security.gentoo.org/glsa/201710-26http://www.securityfocus.com/bid/109233https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.htmlhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851422https://nvd.nist.govhttps://www.debian.org/security/./dsa-3768https://access.redhat.com/security/cve/cve-2016-9572
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028CVE-2024-32406CVE-2024-25624IMAPCVE-2024-2310CVE-2024-0874CVE-2024-20359XXEremote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook