Vulnerabilities > Uclouvain

DATE CVE VULNERABILITY TITLE RISK
2022-03-29 CVE-2022-1122 Improper Initialization vulnerability in multiple products
A flaw was found in the opj2_decompress program in openjpeg2 2.4.0 in the way it handles an input directory with a large number of files.
4.3
2022-03-04 CVE-2021-3575 Out-of-bounds Write vulnerability in multiple products
A heap-based buffer overflow was found in openjpeg in color.c:379:42 in sycc420_to_rgb when decompressing a crafted .j2k file.
6.8
2021-05-13 CVE-2020-27823 Classic Buffer Overflow vulnerability in multiple products
A flaw was found in OpenJPEG’s encoder.
6.8
2021-05-13 CVE-2020-27824 Out-of-bounds Read vulnerability in multiple products
A flaw was found in OpenJPEG’s encoder in the opj_dwt_calc_explicit_stepsizes() function.
4.3
2021-04-14 CVE-2021-29338 Integer Overflow or Wraparound vulnerability in multiple products
Integer Overflow in OpenJPEG v2.4.0 allows remote attackers to crash the application, causing a Denial of Service (DoS).
4.3
2021-01-26 CVE-2020-27814 Heap-based Buffer Overflow vulnerability in multiple products
A heap-buffer overflow was found in the way openjpeg2 handled certain PNG format files.
6.8
2021-01-05 CVE-2020-27845 Out-of-bounds Read vulnerability in multiple products
There's a flaw in src/lib/openjp2/pi.c of openjpeg in versions prior to 2.4.0.
4.3
2021-01-05 CVE-2020-27844 Heap-based Buffer Overflow vulnerability in multiple products
A flaw was found in openjpeg's src/lib/openjp2/t2.c in versions prior to 2.4.0.
8.3
2021-01-05 CVE-2020-27843 Out-of-bounds Read vulnerability in multiple products
A flaw was found in OpenJPEG in versions prior to 2.4.0.
7.1
2021-01-05 CVE-2020-27842 Out-of-bounds Read vulnerability in multiple products
There's a flaw in openjpeg's t2 encoder in versions prior to 2.4.0.
4.3