CVE-2018-14423
Description
Division-by-zero in OpenJPEG 2.3.0 and earlier allows denial of service via crafted image.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Division-by-zero in OpenJPEG 2.3.0 and earlier allows denial of service via crafted image.
Vulnerability
A division-by-zero vulnerability exists in the functions pi_next_pcrl, pi_next_cprl, and pi_next_rpcl in lib/openjp3d/pi.c of OpenJPEG through version 2.3.0 [1][2]. The issue occurs when processing crafted images that trigger modulo operations with a zero divisor, leading to an application crash.
Exploitation
An attacker can exploit this vulnerability by providing a specially crafted image file (e.g., PGX, PNM, or BMP) to the OpenJPEG library for parsing [1]. No authentication or special network position is required; the attack can be remote if the library is exposed to untrusted input.
Impact
Successful exploitation results in a denial of service via application crash. The CIA impact is limited to availability; no code execution or information disclosure is associated with this specific vulnerability [1][2].
Mitigation
The vulnerability is fixed in Ubuntu as part of USN-4109-1 (released 21 August 2019) with updated packages for OpenJPEG [1]. Users should upgrade to OpenJPEG 2.3.1 or later. If no patch is available, avoid processing untrusted images with OpenJPEG.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
59- osv-coords58 versionspkg:rpm/opensuse/openjpeg2&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/openjpeg&distro=openSUSE%20Leap%2015.3pkg:rpm/suse/openjpeg2&distro=HPE%20Helion%20OpenStack%208pkg:rpm/suse/openjpeg2&distro=SUSE%20Enterprise%20Storage%206pkg:rpm/suse/openjpeg2&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP3pkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP2pkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCLpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-LTSSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-LTSSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCLpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCLpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/openjpeg2&distro=SUSE%20Manager%20Proxy%204.1pkg:rpm/suse/openjpeg2&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1pkg:rpm/suse/openjpeg2&distro=SUSE%20Manager%20Server%204.1pkg:rpm/suse/openjpeg2&distro=SUSE%20OpenStack%20Cloud%208pkg:rpm/suse/openjpeg2&distro=SUSE%20OpenStack%20Cloud%209pkg:rpm/suse/openjpeg2&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208pkg:rpm/suse/openjpeg2&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209pkg:rpm/suse/openjpeg&distro=SUSE%20Enterprise%20Storage%206pkg:rpm/suse/openjpeg&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP3pkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP2pkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCLpkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCLpkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/openjpeg&distro=SUSE%20Manager%20Proxy%204.1pkg:rpm/suse/openjpeg&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1pkg:rpm/suse/openjpeg&distro=SUSE%20Manager%20Server%204.1
< 2.3.0-150000.3.5.1+ 57 more
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 2.1.0-4.15.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.1.0-4.15.1
- (no CPE)range: < 2.1.0-4.15.1
- (no CPE)range: < 2.1.0-4.15.1
- (no CPE)range: < 2.1.0-4.15.1
- (no CPE)range: < 2.1.0-4.15.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.1.0-4.15.1
- (no CPE)range: < 2.1.0-4.15.1
- (no CPE)range: < 2.1.0-4.15.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.3.0-150000.3.5.1
- (no CPE)range: < 2.1.0-4.15.1
- (no CPE)range: < 2.1.0-4.15.1
- (no CPE)range: < 2.1.0-4.15.1
- (no CPE)range: < 2.1.0-4.15.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
- (no CPE)range: < 1.5.2-150000.4.5.1
Patches
0No patches discovered yet.
Vulnerability mechanics
Root cause
"Division by zero vulnerabilities exist in multiple functions within OpenJPEG."
Attack vector
A remote attacker can trigger a denial of service by providing a specially crafted image file. This file can cause the functions `pi_next_pcrl`, `pi_next_cprl`, and `pi_next_rpcl` to perform a division by zero operation. This operation leads to an application crash, resulting in a denial of service.
Affected code
The vulnerabilities are located in the `pi_next_pcrl`, `pi_next_cprl`, and `pi_next_rpcl` functions within the file `src/lib/openjp3d/pi.c` [ref_id=1]. These functions contain conditional logic that can lead to division by zero when processing image data.
What the fix does
The patch addresses the division-by-zero vulnerabilities by adding checks before performing bitwise shifts that could result in zero. Specifically, it verifies that `rpx`, `rpy`, and `rpz` are less than 31 and that the shifted values `(comp->dx << rpx)`, `(comp->dy << rpy)`, and `(comp->dz << rpz)` do not overflow. This prevents the division by zero errors that would otherwise occur in the modulo operations within the affected functions [ref_id=1].
Preconditions
- inputA specially crafted image file that triggers the division-by-zero condition.
Generated on Jun 2, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
4- usn.ubuntu.com/4109-1/mitrevendor-advisoryx_refsource_UBUNTU
- www.debian.org/security/2019/dsa-4405mitrevendor-advisoryx_refsource_DEBIAN
- github.com/uclouvain/openjpeg/issues/1123mitrex_refsource_MISC
- lists.debian.org/debian-lts-announce/2018/12/msg00013.htmlmitremailing-listx_refsource_MLIST
News mentions
0No linked articles in our index yet.