CVE-2020-8112

Опубликовано: 28 янв. 2020

Источник: debian

EPSS Низкий

Описание

opj_t1_clbl_decode_processor in openjp2/t1.c in OpenJPEG 2.3.1 through 2020-01-28 has a heap-based buffer overflow in the qmfbid==1 case, a different issue than CVE-2020-6851.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
openjpeg2	fixed	2.4.0-1		package

Примечания

https://github.com/uclouvain/openjpeg/issues/1231
https://github.com/rouault/openjpeg/commit/05f9b91e60debda0e83977e5e63b2e66486f7074 (v2.4.0)

EPSS

Процентиль: 80%

0.01428

Низкий

Связанные уязвимости

CVE-2020-8112

CVSS3: 8.8

ubuntu

около 6 лет назад

opj_t1_clbl_decode_processor in openjp2/t1.c in OpenJPEG 2.3.1 through 2020-01-28 has a heap-based buffer overflow in the qmfbid==1 case, a different issue than CVE-2020-6851.

CVE-2020-8112

CVSS3: 8.8

redhat

около 6 лет назад

opj_t1_clbl_decode_processor in openjp2/t1.c in OpenJPEG 2.3.1 through 2020-01-28 has a heap-based buffer overflow in the qmfbid==1 case, a different issue than CVE-2020-6851.

CVE-2020-8112

CVSS3: 8.8

nvd

около 6 лет назад

opj_t1_clbl_decode_processor in openjp2/t1.c in OpenJPEG 2.3.1 through 2020-01-28 has a heap-based buffer overflow in the qmfbid==1 case, a different issue than CVE-2020-6851.

CVE-2020-8112

CVSS3: 8.8

msrc

больше 1 года назад

Описание отсутствует

GHSA-g38x-2w55-fmr9

github

больше 3 лет назад

opj_t1_clbl_decode_processor in openjp2/t1.c in OpenJPEG 2.3.1 through 2020-01-28 has a heap-based buffer overflow in the qmfbid==1 case, a different issue than CVE-2020-6851.

EPSS

Процентиль: 80%

0.01428

Низкий