VYPR

Openjpeg

by Uclouvain

Source repositories

CVEs (68)

  • CVE-2013-4289Apr 18, 2014
    risk 0.00cvss epss 0.03

    Multiple integer overflows in lib/openjp3d/jp3d.c in OpenJPEG before 1.5.2 allow remote attackers to have unspecified impact and vectors, which trigger a heap-based buffer overflow.

  • CVE-2013-6054Dec 12, 2013
    risk 0.00cvss epss 0.02

    Heap-based buffer overflow in OpenJPEG 1.3 has unspecified impact and remote vectors, a different vulnerability than CVE-2013-6045.

  • CVE-2013-6052Dec 12, 2013
    risk 0.00cvss epss 0.02

    OpenJPEG 1.3 and earlier allows remote attackers to obtain sensitive information via unspecified vectors that trigger a heap-based out-of-bounds read.

  • CVE-2013-6045Dec 12, 2013
    risk 0.00cvss epss 0.06

    Multiple heap-based buffer overflows in OpenJPEG 1.3 and earlier might allow remote attackers to execute arbitrary code via unspecified vectors.

  • CVE-2013-1447Dec 12, 2013
    risk 0.00cvss epss 0.03

    OpenJPEG 1.3 and earlier allows remote attackers to cause a denial of service (memory consumption or crash) via unspecified vectors related to NULL pointer dereferences, division-by-zero, and other errors.

  • CVE-2012-3535Sep 5, 2012
    risk 0.00cvss epss 0.06

    Heap-based buffer overflow in OpenJPEG 1.5.0 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted JPEG2000 file.

  • CVE-2009-5030Jul 18, 2012
    risk 0.00cvss epss 0.04

    The tcd_free_encode function in tcd.c in OpenJPEG 1.3 through 1.5 allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via crafted tile information in a Gray16 TIFF image, which causes insufficient memory to be allocated…

  • CVE-2012-1499Apr 11, 2012
    risk 0.00cvss epss 0.05

    The JPEG 2000 codec (jp2.c) in OpenJPEG before 1.5 allows remote attackers to execute arbitrary code via a crafted palette index in a CMAP record of a JPEG image, which triggers memory corruption, aka "out-of heap-based buffer write."

Page 4 of 4