PT-2025-3337 · Openjpeg+8 · Openjpeg+8

Frank-Z7

Published

2025-01-02

Updated

2025-07-08

CVE-2024-56827

CVSS v3.1

5.6

Medium

Vector

AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:H

Name of the Vulnerable Software and Affected Versions OpenJPEG (affected versions not specified)

Description A flaw was found in the OpenJPEG project, where a heap buffer overflow condition may be triggered when certain options are specified while using the opj decompress utility. This can lead to an application crash or other undefined behavior.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-122

Related Identifiers

ALSA-2025:7309

AZL-55447

AZL-55451

BDU:2025-03465

CVE-2024-56827

DLA-4107-1

DSA-5851-1

INFSA-2025_7309

MGASA-2025-0012

OESA-2025-1043

RHSA-2025:7309

RHSA-2025_7309

USN-7223-1

USN-7623-1

Affected Products

Almalinux

Astra Linux

Debian

Linuxmint

Openjpeg

Red Hat

Red Os

Rocky Linux

Ubuntu

PT-2025-3337 · Openjpeg+8 · Openjpeg+8

CVE-2024-56827

Weakness Enumeration

Related Identifiers

Affected Products

References · 58