openjpeg: A heap-based buffer overflow flaw was found in the patch for CVE-2013-6045. A crafted j2k image could cause the application to crash, or potentially execute arbitrary code.
2016-12-22T21:59:00.223
2025-04-12T10:46:40.837
Deferred
CVSSv3.1: 7.8 (HIGH)
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.6
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | uclouvain | openjpeg | < 1.5.2 | Yes |
| Operating System | redhat | enterprise_linux | 6.0 | Yes |
| Operating System | redhat | enterprise_linux | 7.0 | Yes |
| Operating System | redhat | enterprise_linux | 7.3 | Yes |
| Operating System | redhat | enterprise_linux | 7.4 | Yes |
| Operating System | redhat | enterprise_linux | 7.5 | Yes |
| Operating System | redhat | enterprise_linux | 7.6 | Yes |
| Operating System | redhat | enterprise_linux | 7.7 | Yes |
| Operating System | redhat | enterprise_linux_for_ibm_z_systems | 6.0 | Yes |
| Operating System | redhat | enterprise_linux_for_power_big_endian | 6.0 | Yes |
| Operating System | redhat | enterprise_linux_for_scientific_computing | 6.0 | Yes |