PT-2025-3337 · Openjpeg+8 · Openjpeg+8

Frank-Z7

Publicado

2025-01-02

Atualizado

2025-07-08

CVE-2024-56827

CVSS v3.1

5.6

Média

Vetor

AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:H

Name of the Vulnerable Software and Affected Versions OpenJPEG (affected versions not specified)

Description A flaw was found in the OpenJPEG project, where a heap buffer overflow condition may be triggered when certain options are specified while using the opj decompress utility. This can lead to an application crash or other undefined behavior.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Heap Based Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-122

Identificadores relacionados

ALSA-2025:7309

AZL-55447

AZL-55451

BDU:2025-03465

CVE-2024-56827

DLA-4107-1

DSA-5851-1

INFSA-2025_7309

MGASA-2025-0012

OESA-2025-1043

RHSA-2025:7309

RHSA-2025_7309

USN-7223-1

USN-7623-1

Produtos afetados

Almalinux

Astra Linux

Debian

Linuxmint

Openjpeg

Red Hat

Red Os

Rocky Linux

Ubuntu

PT-2025-3337 · Openjpeg+8 · Openjpeg+8

CVE-2024-56827

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 58