CVE-2020-27824
Description
OpenJPEG encoder buffer overflow via crafted decomposition levels leads to denial of service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
OpenJPEG encoder buffer overflow via crafted decomposition levels leads to denial of service.
Vulnerability
A flaw exists in the OpenJPEG library's encoder, specifically in the opj_dwt_calc_explicit_stepsizes() function. An attacker who can supply crafted input with too many decomposition levels to the encoder can trigger a global-buffer-overflow read. Affected versions include OpenJPEG v2.3.1 and prior [1].
Exploitation
An attacker needs to provide a maliciously crafted image or data stream to the OpenJPEG encoder. No authentication or special privileges are required; any user or service that feeds untrusted input to the encoder can trigger the vulnerability. The overflow occurs during the calculation of step sizes when excessive decomposition levels are specified [1].
Impact
Successful exploitation causes a buffer over-read, which can lead to an application crash (denial of service). The highest threat is to system availability. No code execution or information disclosure has been demonstrated from this flaw [1].
Mitigation
The issue has been patched in upstream commit 6daf5f3e1ec6eff03b7982889874a3de6617db8d [1]. Red Hat Enterprise Linux 8 addressed the flaw via RHSA-2021:4251 on 2021-11-09 [1]. Fedora updates were also tracked. Users should update to a fixed version of OpenJPEG (e.g., later than v2.3.1) or apply the patch [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
50- OpenJPEG/OpenJPEG’s encoderdescription
- osv-coords48 versionspkg:rpm/almalinux/openjpeg2pkg:rpm/almalinux/openjpeg2-develpkg:rpm/almalinux/openjpeg2-devel-docspkg:rpm/almalinux/openjpeg2-toolspkg:rpm/opensuse/openjpeg2&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/openjpeg2&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/openjpeg&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/openjpeg&distro=openSUSE%20Leap%2015.4pkg:rpm/suse/openjpeg2&distro=SUSE%20Enterprise%20Storage%206pkg:rpm/suse/openjpeg2&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP3pkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCLpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-LTSSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCLpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCLpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/openjpeg2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/openjpeg2&distro=SUSE%20Manager%20Proxy%204.1pkg:rpm/suse/openjpeg2&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1pkg:rpm/suse/openjpeg2&distro=SUSE%20Manager%20Server%204.1pkg:rpm/suse/openjpeg2&distro=SUSE%20OpenStack%20Cloud%209pkg:rpm/suse/openjpeg2&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209pkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP3pkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP4pkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCLpkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCLpkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/openjpeg&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015
< 2.4.0-4.el8+ 47 more
- (no CPE)range: < 2.4.0-4.el8
- (no CPE)range: < 2.4.0-4.el8
- (no CPE)range: < 2.4.0-4.el8
- (no CPE)range: < 2.4.0-4.el8
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 1.5.2-150000.4.10.1
- (no CPE)range: < 1.5.2-150000.4.10.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.1.0-4.18.2
- (no CPE)range: < 2.1.0-4.18.2
- (no CPE)range: < 2.1.0-4.18.2
- (no CPE)range: < 2.1.0-4.18.2
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.1.0-4.18.2
- (no CPE)range: < 2.1.0-4.18.2
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.3.0-150000.3.8.1
- (no CPE)range: < 2.1.0-4.18.2
- (no CPE)range: < 2.1.0-4.18.2
- (no CPE)range: < 1.5.2-150000.4.10.1
- (no CPE)range: < 1.5.2-150000.4.10.1
- (no CPE)range: < 1.5.2-150000.4.10.1
- (no CPE)range: < 1.5.2-150000.4.10.1
- (no CPE)range: < 1.5.2-150000.4.10.1
- (no CPE)range: < 1.5.2-150000.4.10.1
- (no CPE)range: < 1.5.2-150000.4.10.1
- (no CPE)range: < 1.5.2-150000.4.10.1
- (no CPE)range: < 1.5.2-150000.4.10.1
- (no CPE)range: < 1.5.2-150000.4.10.1
Patches
0No patches discovered yet.
Vulnerability mechanics
No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.
References
6- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OQR4EWRFFZQDMFPZKFZ6I3USLMW6TKTP/mitrevendor-advisoryx_refsource_FEDORA
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WJUPGIZE6A4O52EBOF75MCXJOL6MUCRV/mitrevendor-advisoryx_refsource_FEDORA
- www.debian.org/security/2021/dsa-4882mitrevendor-advisoryx_refsource_DEBIAN
- bugzilla.redhat.com/show_bug.cgimitrex_refsource_MISC
- lists.debian.org/debian-lts-announce/2021/02/msg00011.htmlmitremailing-listx_refsource_MLIST
- www.oracle.com/security-alerts/cpuoct2021.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.