PT-2018-4119 · Openjpeg+1 · Openjpeg+1

Alexander Bergmann

Published

2014-04-17

Updated

2021-03-05

CVE-2014-0158

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions OpenJPEG (affected versions not specified)

Description A heap-based buffer overflow was found in the way OpenJPEG parsed certain image files from a JPEG2000 image. If a specially-crafted image were opened by an application linked against OpenJPEG, it could cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running the application.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

ALT-PU-2019-2337

ALT-PU-2021-1097

ALT-PU-2021-1197

CVE-2014-0158

MGASA-2014-0182

OESA-2021-1061

Affected Products

Alt Linux

Openjpeg

PT-2018-4119 · Openjpeg+1 · Openjpeg+1

CVE-2014-0158

Weakness Enumeration

Related Identifiers

Affected Products

References · 40