High severity7.5NVD Advisory· Published Oct 3, 2016· Updated May 6, 2026

CVE-2016-7445

Description

convert.c in OpenJPEG before 2.1.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors involving the variable s.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/uclouvain/openjpeg/issues/843nvdPatchThird Party Advisory
www.openwall.com/lists/oss-security/2016/09/18/4nvdExploitMailing ListThird Party Advisory
lists.opensuse.org/opensuse-updates/2016-09/msg00109.htmlnvdThird Party Advisory
www.openwall.com/lists/oss-security/2016/09/18/6nvdMailing ListThird Party Advisory
www.securityfocus.com/bid/93040nvdThird Party AdvisoryVDB Entry
github.com/uclouvain/openjpeg/blob/openjpeg-2.1/CHANGELOG.mdnvdRelease NotesThird Party Advisory
security.gentoo.org/glsa/201612-26nvd

News mentions

No linked articles in our index yet.

cvss	0.488
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000