Note:
This project will be discontinued after December 13, 2021. [more]
2017-12-08
In OpenJPEG 2.3.0, a stack-based buffer overflow was discovered in the pgxtoimage function in jpwl/convert.c. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution.
Products | Openjpeg |
Type | Out-of-bounds Write (CWE-787) |
First patch | - None (likely due to unavailable code) |
Links | https://github.com/uclouvain/openjpeg/issues/1044 |