Max CVSS | 6.8 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2016-9581 | 6.8 |
An infinite loop vulnerability in tiftoimage that results in heap buffer overflow in convert_32s_C1P1 was found in openjpeg 2.1.2.
|
12-02-2023 - 23:27 | 01-08-2018 - 14:29 | |
CVE-2016-9572 | 4.3 |
A NULL pointer dereference flaw was found in the way openjpeg 2.1.2 decoded certain input images. Due to a logic error in the code responsible for decoding the input image, an application using openjpeg to process image data could crash when processi
|
12-02-2023 - 23:27 | 01-08-2018 - 16:29 | |
CVE-2016-9573 | 5.8 |
An out-of-bounds read vulnerability was found in OpenJPEG 2.1.2, in the j2k_to_image tool. Converting a specially crafted JPEG2000 file to another format could cause the application to crash or, potentially, disclose some data from the heap.
|
12-02-2023 - 23:27 | 01-08-2018 - 06:29 | |
CVE-2016-9580 | 6.8 |
An integer overflow vulnerability was found in tiftoimage function in openjpeg 2.1.2, resulting in heap buffer overflow.
|
12-02-2023 - 23:27 | 01-08-2018 - 16:29 | |
CVE-2017-12982 | 4.3 |
The bmp_read_info_header function in bin/jp2/convertbmp.c in OpenJPEG 2.2.0 does not reject headers with a zero biBitCount, which allows remote attackers to cause a denial of service (memory allocation failure) in the opj_image_create function in lib
|
02-02-2021 - 19:56 | 21-08-2017 - 07:29 | |
CVE-2017-14039 | 6.8 |
A heap-based buffer overflow was discovered in the opj_t2_encode_packet function in lib/openjp2/t2.c in OpenJPEG 2.2.0. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly unspecified other impact.
|
02-02-2021 - 19:55 | 30-08-2017 - 22:29 | |
CVE-2017-14164 | 6.8 |
A size-validation issue was discovered in opj_j2k_write_sot in lib/openjp2/j2k.c in OpenJPEG 2.2.0. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service (heap-based buffer overflow affecting opj_write_bytes_LE i
|
02-02-2021 - 19:51 | 06-09-2017 - 18:29 | |
CVE-2016-9115 | 4.3 |
Heap Buffer Over-read in function imagetotga of convert.c(jp2):942 in OpenJPEG 2.1.2. Impact is Denial of Service. Someone must open a crafted j2k file.
|
09-09-2020 - 19:57 | 30-10-2016 - 22:59 | |
CVE-2016-9114 | 5.0 |
There is a NULL Pointer Access in function imagetopnm of convert.c:1943(jp2) of OpenJPEG 2.1.2. image->comps[compno].data is not assigned a value after initialization(NULL). Impact is Denial of Service.
|
09-09-2020 - 19:57 | 30-10-2016 - 22:59 | |
CVE-2016-9113 | 5.0 |
There is a NULL pointer dereference in function imagetobmp of convertbmp.c:980 of OpenJPEG 2.1.2. image->comps[0].data is not assigned a value after initialization(NULL). Impact is Denial of Service.
|
09-09-2020 - 19:57 | 30-10-2016 - 22:59 | |
CVE-2016-9118 | 5.0 |
Heap Buffer Overflow (WRITE of size 4) in function pnmtoimage of convert.c:1719 in OpenJPEG 2.1.2.
|
09-09-2020 - 19:57 | 30-10-2016 - 22:59 | |
CVE-2016-9117 | 4.3 |
NULL Pointer Access in function imagetopnm of convert.c(jp2):1289 in OpenJPEG 2.1.2. Impact is Denial of Service. Someone must open a crafted j2k file.
|
09-09-2020 - 19:57 | 30-10-2016 - 22:59 | |
CVE-2016-9112 | 5.0 |
Floating Point Exception (aka FPE or divide by zero) in opj_pi_next_cprl function in openjp2/pi.c:523 in OpenJPEG 2.1.2.
|
09-09-2020 - 19:57 | 29-10-2016 - 10:59 | |
CVE-2016-9116 | 4.3 |
NULL Pointer Access in function imagetopnm of convert.c:2226(jp2) in OpenJPEG 2.1.2. Impact is Denial of Service. Someone must open a crafted j2k file.
|
09-09-2020 - 19:57 | 30-10-2016 - 22:59 | |
CVE-2016-10504 | 4.3 |
Heap-based buffer overflow vulnerability in the opj_mqc_byteout function in mqc.c in OpenJPEG before 2.2.0 allows remote attackers to cause a denial of service (application crash) via a crafted bmp file.
|
09-09-2020 - 19:57 | 30-08-2017 - 09:29 | |
CVE-2016-10506 | 4.3 |
Division-by-zero vulnerabilities in the functions opj_pi_next_cprl, opj_pi_next_pcrl, and opj_pi_next_rpcl in pi.c in OpenJPEG before 2.2.0 allow remote attackers to cause a denial of service (application crash) via crafted j2k files.
|
09-09-2020 - 19:57 | 30-08-2017 - 09:29 | |
CVE-2016-10507 | 4.3 |
Integer overflow vulnerability in the bmp24toimage function in convertbmp.c in OpenJPEG before 2.2.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted bmp file.
|
09-09-2020 - 19:57 | 30-08-2017 - 09:29 | |
CVE-2016-10505 | 4.3 |
NULL pointer dereference vulnerabilities in the imagetopnm function in convert.c, sycc444_to_rgb function in color.c, color_esycc_to_rgb function in color.c, and sycc422_to_rgb function in color.c in OpenJPEG before 2.2.0 allow remote attackers to ca
|
09-09-2020 - 19:57 | 30-08-2017 - 09:29 | |
CVE-2016-1626 | 4.3 |
The opj_pi_update_decode_poc function in pi.c in OpenJPEG, as used in PDFium in Google Chrome before 48.0.2564.109, miscalculates a certain layer index value, which allows remote attackers to cause a denial of service (out-of-bounds read) via a craft
|
30-10-2018 - 16:27 | 14-02-2016 - 02:59 | |
CVE-2016-1628 | 6.8 |
pi.c in OpenJPEG, as used in PDFium in Google Chrome before 48.0.2564.109, does not validate a certain precision value, which allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read) via a crafted JPEG 2000
|
06-11-2017 - 02:29 | 21-02-2016 - 05:59 |