CVE-2026-6192

CVSS v3.1

3.3

Low

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions uclouvain openjpeg versions prior to 2.5.5

Description An integer overflow occurs in the opj pi initialise encode() function within the src/lib/openjp2/pi.c library. This issue requires local access to be exploited.

Recommendations Install the patch identified as 839936aa33eb8899bbbd80fda02796bb65068951 for versions prior to 2.5.5.

Exploit

Fix

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190CWE-189

Related Identifiers

CVE-2026-6192

ECHO-A92E-9791-007A

OESA-2026-1959

OESA-2026-2022

OESA-2026-2023

OESA-2026-2024

OESA-2026-2025

USN-8252-1

Affected Products

Linuxmint

Ubuntu

Openjpeg

CVE-2026-6192

Weakness Enumeration

Related Identifiers

Affected Products

References · 28