Search CVE reports

Toggle filters

31 – 40 of 79 results

CVE-2018-20847

Medium priority

Some fixes available 1 of 76

An improper computation of p_tx0, p_tx1, p_ty0 and p_ty1 in the function opj_get_encoding_parameters in openjp2/pi.c in OpenJPEG through 2.3.0 can lead to an integer overflow.

8 affected packages

texmaker, blender, insighttoolkit4, qtwebengine-opensource-src, emscripten...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
texmaker Needs evaluation Needs evaluation Needs evaluation Needs evaluation
blender Needs evaluation Needs evaluation Needs evaluation Needs evaluation
insighttoolkit4 Not in release Needs evaluation Needs evaluation Needs evaluation
qtwebengine-opensource-src Needs evaluation Needs evaluation Needs evaluation Needs evaluation
emscripten Ignored Ignored Not in release Ignored
gdcm Not affected Not affected Not affected Not affected
openjpeg2 Not affected Not affected Not affected Not affected
openjpeg Not in release Not in release Not in release Not in release
Show all 8 packages Show less packages

CVE-2018-20846

Medium priority
Needs evaluation

Out-of-bounds accesses in the functions pi_next_lrcp, pi_next_rlcp, pi_next_rpcl, pi_next_pcrl, pi_next_rpcl, and pi_next_cprl in openmj2/pi.c in OpenJPEG through 2.3.0 allow remote attackers to cause a denial of service...

8 affected packages

blender, emscripten, insighttoolkit4, qtwebengine-opensource-src, texmaker...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
blender Needs evaluation Needs evaluation Needs evaluation Needs evaluation
emscripten Ignored Ignored Not in release Ignored
insighttoolkit4 Not in release Needs evaluation Needs evaluation Needs evaluation
qtwebengine-opensource-src Needs evaluation Needs evaluation Needs evaluation Needs evaluation
texmaker Needs evaluation Needs evaluation Needs evaluation Needs evaluation
gdcm Not affected Not affected Not affected Not affected
openjpeg2 Not affected Not affected Not affected Not affected
openjpeg Not in release Not in release Not in release Not in release
Show all 8 packages Show less packages

CVE-2018-20845

Medium priority

Some fixes available 1 of 84

Division-by-zero vulnerabilities in the functions pi_next_pcrl, pi_next_cprl, and pi_next_rpcl in openmj2/pi.c in OpenJPEG through 2.3.0 allow remote attackers to cause a denial of service (application crash).

8 affected packages

emscripten, qtwebengine-opensource-src, texmaker, blender, insighttoolkit4...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
emscripten Ignored Ignored Not in release Ignored
qtwebengine-opensource-src Needs evaluation Needs evaluation Needs evaluation Needs evaluation
texmaker Needs evaluation Needs evaluation Needs evaluation Needs evaluation
blender Needs evaluation Needs evaluation Needs evaluation Needs evaluation
insighttoolkit4 Not in release Needs evaluation Needs evaluation Needs evaluation
openjpeg Not in release Not in release Not in release Not in release
gdcm Not affected Not affected Not affected Not affected
openjpeg2 Not affected Not affected Not affected Fixed
Show all 8 packages Show less packages

CVE-2018-18088

Medium priority

Some fixes available 3 of 5

OpenJPEG 2.3.0 has a NULL pointer dereference for "red" in the imagetopnm function of jp2/convert.c

2 affected packages

openjpeg2, openjpeg

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
openjpeg2 Not affected Not affected Not affected Fixed
openjpeg Not in release Not in release Not in release
Show less packages

CVE-2018-16376

Low priority
Ignored

An issue was discovered in OpenJPEG 2.3.0. A heap-based buffer overflow was discovered in the function t2_encode_packet in lib/openmj2/t2.c. The vulnerability causes an out-of-bounds write, which may lead to remote denial of...

2 affected packages

openjpeg2, openjpeg

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
openjpeg2 Not affected Not affected
openjpeg Not in release Not in release
Show less packages

CVE-2018-16375

Medium priority

Some fixes available 1 of 4

An issue was discovered in OpenJPEG 2.3.0. Missing checks for header_info.height and header_info.width in the function pnmtoimage in bin/jpwl/convert.c can lead to a heap-based buffer overflow.

2 affected packages

openjpeg2, openjpeg

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
openjpeg2 Not affected Fixed
openjpeg Not in release Not in release
Show less packages

CVE-2018-14423

Low priority

Some fixes available 2 of 5

Division-by-zero vulnerabilities in the functions pi_next_pcrl, pi_next_cprl, and pi_next_rpcl in lib/openjp3d/pi.c in OpenJPEG through 2.3.0 allow remote attackers to cause a denial of service (application crash).

2 affected packages

openjpeg, openjpeg2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
openjpeg Not in release Not in release Not in release
openjpeg2 Not affected Not affected Fixed
Show less packages

CVE-2017-17480

Medium priority

Some fixes available 2 of 6

In OpenJPEG 2.3.0, a stack-based buffer overflow was discovered in the pgxtovolume function in jp3d/convert.c. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution.

2 affected packages

openjpeg, openjpeg2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
openjpeg Not in release Not in release Not in release
openjpeg2 Not affected Not affected Fixed
Show less packages

CVE-2017-17479

Medium priority

Some fixes available 3 of 8

In OpenJPEG 2.3.0, a stack-based buffer overflow was discovered in the pgxtoimage function in jpwl/convert.c. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution.

2 affected packages

openjpeg2, openjpeg

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
openjpeg2 Not affected Not affected Not affected Fixed
openjpeg Not in release Not in release Not in release Not in release
Show less packages

CVE-2017-14164

Low priority

Some fixes available 1 of 3

A size-validation issue was discovered in opj_j2k_write_sot in lib/openjp2/j2k.c in OpenJPEG 2.2.0. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service (heap-based buffer overflow affecting...

2 affected packages

openjpeg, openjpeg2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
openjpeg Not in release
openjpeg2 Not affected
Show less packages
  1. Previous page
  2. 2
  3. 3
  4. 4
  5. 5
  6. 6
  7. Next page
Export to JSON