CVE-2016-3183

Опубликовано: 03 фев. 2017

Источник: debian

EPSS Низкий

Описание

The sycc422_t_rgb function in common/color.c in OpenJPEG before 2.1.1 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted jpeg2000 file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
openjpeg2	fixed	2.1.1-1		package
openjpeg2	no-dsa		jessie	package

Примечания

https://www.openwall.com/lists/oss-security/2016/03/14/14
https://github.com/uclouvain/openjpeg/issues/726

EPSS

Процентиль: 33%

0.00129

Низкий

Связанные уязвимости

CVE-2016-3183

CVSS3: 5.5

ubuntu

около 9 лет назад

The sycc422_t_rgb function in common/color.c in OpenJPEG before 2.1.1 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted jpeg2000 file.

CVE-2016-3183

redhat

почти 10 лет назад

The sycc422_t_rgb function in common/color.c in OpenJPEG before 2.1.1 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted jpeg2000 file.

CVE-2016-3183

CVSS3: 5.5

nvd

около 9 лет назад

The sycc422_t_rgb function in common/color.c in OpenJPEG before 2.1.1 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted jpeg2000 file.

GHSA-55fp-6c46-gr3x

CVSS3: 5.5

github

больше 3 лет назад

The sycc422_t_rgb function in common/color.c in OpenJPEG before 2.1.1 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted jpeg2000 file.

SUSE-SU-2022:1129-1

suse-cvrf

почти 4 года назад

Security update for openjpeg2

EPSS

Процентиль: 33%

0.00129

Низкий