CVE-2023-39329

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions OpenJPEG (affected versions not specified)

Description A flaw in OpenJPEG can cause a resource exhaustion in the opj t1 decode cblks function in tcd.c through a crafted image file, leading to a denial of service.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400

Related Identifiers

AZL-43495

AZL-44217

CVE-2023-39329

ECHO-91BF-3D3C-AEE7

Affected Products

Debian

Openjpeg

CVE-2023-39329

Weakness Enumeration

Related Identifiers

Affected Products

References · 19