CVE-2023-39329

Опубликовано: 13 июл. 2024

Источник: debian

EPSS Низкий

Описание

A flaw was found in OpenJPEG. A resource exhaustion can occur in the opj_t1_decode_cblks function in tcd.c through a crafted image file, causing a denial of service.

Пакеты

Пакет	Статус	Релиз	Тип
openjpeg2	unfixed		package
openjpeg2	postponed	trixie	package
openjpeg2	postponed	bookworm	package
openjpeg2	no-dsa	bullseye	package

Примечания

https://github.com/uclouvain/openjpeg/issues/1474

EPSS

Процентиль: 29%

0.00108

Низкий

Связанные уязвимости

CVE-2023-39329

CVSS3: 6.5

ubuntu

больше 1 года назад

A flaw was found in OpenJPEG. A resource exhaustion can occur in the opj_t1_decode_cblks function in tcd.c through a crafted image file, causing a denial of service.

CVE-2023-39329

CVSS3: 6.5

redhat

больше 1 года назад

A flaw was found in OpenJPEG. A resource exhaustion can occur in the opj_t1_decode_cblks function in tcd.c through a crafted image file, causing a denial of service.

CVE-2023-39329

CVSS3: 6.5

nvd

больше 1 года назад

A flaw was found in OpenJPEG. A resource exhaustion can occur in the opj_t1_decode_cblks function in tcd.c through a crafted image file, causing a denial of service.

GHSA-8g92-f59v-j999

CVSS3: 6.5

github

больше 1 года назад

A flaw was found in OpenJPEG. A resource exhaustion can occur in the opj_t1_decode_cblks function in tcd.c through a crafted image file, causing a denial of service.

EPSS

Процентиль: 29%

0.00108

Низкий