Unrated severityNVD Advisory· Published Jan 5, 2021· Updated Aug 4, 2024
CVE-2020-27844
CVE-2020-27844
Description
A flaw was found in openjpeg's src/lib/openjp2/t2.c in versions prior to 2.4.0. This flaw allows an attacker to provide crafted input to openjpeg during conversion and encoding, causing an out-of-bounds write. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5- openjpeg/openjpegdescription
- osv-coords3 versionspkg:rpm/opensuse/chromium&distro=openSUSE%20Leap%2015.2pkg:rpm/opensuse/chromium&distro=openSUSE%20Tumbleweedpkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2015%20SP2
< 89.0.4389.72-lp152.2.77.1+ 2 more
- (no CPE)range: < 89.0.4389.72-lp152.2.77.1
- (no CPE)range: < 93.0.4577.82-1.1
- (no CPE)range: < 89.0.4389.72-bp152.2.62.1
Patches
Vulnerability mechanics
References
5- security.gentoo.org/glsa/202101-29mitrevendor-advisoryx_refsource_GENTOO
- bugzilla.redhat.com/show_bug.cgimitrex_refsource_MISC
- lists.debian.org/debian-lts-announce/2021/02/msg00011.htmlmitremailing-listx_refsource_MLIST
- www.oracle.com//security-alerts/cpujul2021.htmlmitrex_refsource_MISC
- www.oracle.com/security-alerts/cpuApr2021.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.