Vulnerabilities > Uclouvain > Openjpeg > Medium

DATE CVE VULNERABILITY TITLE RISK
2016-10-30 CVE-2016-9114 NULL Pointer Dereference vulnerability in Uclouvain Openjpeg 2.1.2
There is a NULL Pointer Access in function imagetopnm of convert.c:1943(jp2) of OpenJPEG 2.1.2.
network
low complexity
uclouvain CWE-476
5.0
2016-10-30 CVE-2016-9113 NULL Pointer Dereference vulnerability in Uclouvain Openjpeg 2.1.2
There is a NULL pointer dereference in function imagetobmp of convertbmp.c:980 of OpenJPEG 2.1.2.
network
low complexity
uclouvain CWE-476
5.0
2016-10-29 CVE-2016-9112 Divide By Zero vulnerability in Uclouvain Openjpeg 2.1.2
Floating Point Exception (aka FPE or divide by zero) in opj_pi_next_cprl function in openjp2/pi.c:523 in OpenJPEG 2.1.2.
network
low complexity
uclouvain CWE-369
5.0
2016-10-28 CVE-2016-8332 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Uclouvain Openjpeg 2.1.1
A buffer overflow in OpenJPEG 2.1.1 causes arbitrary code execution when parsing a crafted image.
network
uclouvain CWE-119
6.8
2016-10-03 CVE-2016-7445 NULL Pointer Dereference vulnerability in multiple products
convert.c in OpenJPEG before 2.1.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors involving the variable s.
network
low complexity
uclouvain opensuse CWE-476
5.0
2016-01-27 CVE-2016-1924 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Uclouvain Openjpeg
The opj_tgt_reset function in OpenJpeg 2016.1.18 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted JPEG 2000 image.
network
uclouvain CWE-119
4.3
2016-01-27 CVE-2016-1923 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Uclouvain Openjpeg 2.1.0
Heap-based buffer overflow in the opj_j2k_update_image_data function in OpenJpeg 2016.1.18 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted JPEG 2000 image.
network
uclouvain CWE-119
4.3
2014-04-27 CVE-2013-6053 Improper Input Validation vulnerability in Uclouvain Openjpeg 1.5.1
OpenJPEG 1.5.1 allows remote attackers to obtain sensitive information via unspecified vectors that trigger a heap-based out-of-bounds read.
network
low complexity
uclouvain CWE-20
5.0
2014-04-27 CVE-2013-6887 Improper Input Validation vulnerability in Uclouvain Openjpeg 1.5.1
OpenJPEG 1.5.1 allows remote attackers to cause a denial of service via unspecified vectors that trigger NULL pointer dereferences, division-by-zero, and other errors.
network
low complexity
uclouvain CWE-20
6.4
2013-12-12 CVE-2013-6052 Information Exposure vulnerability in Uclouvain Openjpeg
OpenJPEG 1.3 and earlier allows remote attackers to obtain sensitive information via unspecified vectors that trigger a heap-based out-of-bounds read.
network
low complexity
uclouvain CWE-200
5.0