Search for packages
| purl | pkg:deb/debian/openjpeg2@2.1.2-1.1%2Bdeb9u4 |
| Next non-vulnerable version | 2.5.0-2+deb12u2 |
| Latest non-vulnerable version | 2.5.0-2+deb12u2 |
| Risk | 9.4 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-1z5a-aa47-dyft
Aliases: CVE-2018-20846 |
openjpeg: out-of-bounds read in functions pi_next_lrcp, pi_next_rlcp, pi_next_rpcl, pi_next_pcrl, pi_next_rpcl, and pi_next_cprl in openmj2/pi.c leads to denial of service |
Affected by 6 other vulnerabilities. |
|
VCID-2272-j2kp-x3du
Aliases: CVE-2019-12973 |
Multiple vulnerabilities have been found in OpenJPEG, the worst of which could result in the arbitrary execution of code. |
Affected by 6 other vulnerabilities. |
|
VCID-2ad2-5t5w-d7ew
Aliases: CVE-2020-27824 |
openjpeg: global-buffer-overflow read in opj_dwt_calc_explicit_stepsizes() |
Affected by 24 other vulnerabilities. Affected by 6 other vulnerabilities. |
|
VCID-3r1m-53dp-yff2
Aliases: CVE-2020-27842 |
Multiple vulnerabilities have been found in OpenJPEG, the worst of which could result in the arbitrary execution of code. |
Affected by 24 other vulnerabilities. Affected by 6 other vulnerabilities. |
|
VCID-4hbk-qsje-63fd
Aliases: CVE-2020-27841 |
Multiple vulnerabilities have been found in OpenJPEG, the worst of which could result in the arbitrary execution of code. |
Affected by 24 other vulnerabilities. Affected by 6 other vulnerabilities. |
|
VCID-6m6f-5tup-pbay
Aliases: CVE-2016-10506 |
Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow remote attackers to execute arbitrary code. |
Affected by 24 other vulnerabilities. |
|
VCID-7ath-fa35-5uca
Aliases: CVE-2020-6851 |
openjpeg: Heap-based buffer overflow in opj_t1_clbl_decode_processor() |
Affected by 24 other vulnerabilities. Affected by 6 other vulnerabilities. |
|
VCID-7vw2-fcqu-8bae
Aliases: CVE-2017-14152 |
security update |
Affected by 24 other vulnerabilities. |
|
VCID-an46-hxt9-57e1
Aliases: CVE-2021-3575 |
Out-of-bounds Write A heap-based buffer overflow was found in openjpeg in color.c:379:42 in sycc420_to_rgb when decompressing a crafted .j2k file. An attacker could use this to execute arbitrary code with the permissions of the application compiled against openjpeg. |
Affected by 0 other vulnerabilities. |
|
VCID-cgvq-jt8a-4yba
Aliases: CVE-2024-56826 |
openjpeg: heap buffer overflow in bin/common/color.c |
Affected by 0 other vulnerabilities. |
|
VCID-drgt-8maa-xqgv
Aliases: CVE-2016-5152 |
Multiple vulnerabilities have been found in the Chromium web browser, the worst of which allows remote attackers to execute arbitrary code. |
Affected by 24 other vulnerabilities. |
|
VCID-e76r-pz11-yfhu
Aliases: CVE-2016-1626 |
Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow remote attackers to execute arbitrary code. |
Affected by 24 other vulnerabilities. |
|
VCID-eavm-6anm-nfgu
Aliases: CVE-2016-9112 |
Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow remote attackers to execute arbitrary code. |
Affected by 24 other vulnerabilities. |
|
VCID-ecez-3pwt-pudf
Aliases: CVE-2018-20845 |
openjpeg: division-by-zero in functions pi_next_pcrl, pi_next_cprl, and pi_next_rpcl in openmj2/pi.c |
Affected by 6 other vulnerabilities. |
|
VCID-fc33-x3z3-tyde
Aliases: CVE-2017-17479 |
openjpeg: Stack-buffer overflow in the pgxtoimage function |
Affected by 24 other vulnerabilities. |
|
VCID-fq9r-fneu-1fhu
Aliases: CVE-2017-14039 |
Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow remote attackers to execute arbitrary code. |
Affected by 24 other vulnerabilities. |
|
VCID-hxax-t3zc-8kax
Aliases: CVE-2018-5727 |
openjpeg: integer overflow in opj_t1_encode_cblks in src/lib/openjp2/t1.c |
Affected by 6 other vulnerabilities. |
|
VCID-j8et-rm1k-xkhg
Aliases: CVE-2018-5785 |
security update |
Affected by 24 other vulnerabilities. |
|
VCID-jayn-yzet-k7g5
Aliases: CVE-2016-9118 |
Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow remote attackers to execute arbitrary code. |
Affected by 24 other vulnerabilities. |
|
VCID-jqup-3gmb-mqbh
Aliases: CVE-2016-1628 |
Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow remote attackers to execute arbitrary code. |
Affected by 24 other vulnerabilities. |
|
VCID-jvtx-fv51-5bbe
Aliases: CVE-2017-14041 |
security update |
Affected by 24 other vulnerabilities. |
|
VCID-k9dc-cxnp-nug2
Aliases: CVE-2024-56827 |
openjpeg: heap buffer overflow in lib/openjp2/j2k.c |
Affected by 0 other vulnerabilities. |
|
VCID-kq91-13ek-rkcu
Aliases: CVE-2020-15389 |
Multiple vulnerabilities have been found in OpenJPEG, the worst of which could result in the arbitrary execution of code. |
Affected by 24 other vulnerabilities. Affected by 6 other vulnerabilities. |
|
VCID-kt1c-6859-v3ej
Aliases: CVE-2017-17480 |
security update |
Affected by 24 other vulnerabilities. |
|
VCID-mdhg-k4sr-3bg7
Aliases: CVE-2020-8112 |
openjpeg: heap-based buffer overflow in pj_t1_clbl_decode_processor in openjp2/t1.c |
Affected by 24 other vulnerabilities. Affected by 6 other vulnerabilities. |
|
VCID-ndpq-xye2-tugw
Aliases: CVE-2017-12982 |
Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow remote attackers to execute arbitrary code. |
Affected by 24 other vulnerabilities. |
|
VCID-pzv2-p44c-8qg4
Aliases: CVE-2021-29338 |
Multiple vulnerabilities have been discovered in OpenJPEG, the worst of which could result in arbitrary code execution. |
Affected by 0 other vulnerabilities. |
|
VCID-qyq1-1npp-yyb4
Aliases: CVE-2025-50952 |
openjpeg: Openjpeg NULL pointer dereference |
Affected by 0 other vulnerabilities. |
|
VCID-rm5x-1fp6-mfau
Aliases: CVE-2018-6616 |
security update |
Affected by 24 other vulnerabilities. |
|
VCID-tgph-8x71-qbc2
Aliases: CVE-2018-14423 |
security update |
Affected by 24 other vulnerabilities. |
|
VCID-ttzh-p89a-mkar
Aliases: CVE-2018-18088 |
security update |
Affected by 24 other vulnerabilities. |
|
VCID-u497-trj1-rfdj
Aliases: CVE-2020-27814 |
Multiple vulnerabilities have been found in OpenJPEG, the worst of which could result in the arbitrary execution of code. |
Affected by 24 other vulnerabilities. Affected by 6 other vulnerabilities. |
|
VCID-uzpe-dvyu-ckfc
Aliases: CVE-2017-14040 |
security update |
Affected by 24 other vulnerabilities. |
|
VCID-wc6r-1t2c-9qdp
Aliases: CVE-2016-10504 |
Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow remote attackers to execute arbitrary code. |
Affected by 24 other vulnerabilities. |
|
VCID-whsh-5urk-b3ap
Aliases: CVE-2020-27823 |
openjpeg: heap-buffer-overflow write in opj_tcd_dc_level_shift_encode() |
Affected by 24 other vulnerabilities. Affected by 6 other vulnerabilities. |
|
VCID-xc4v-2aa6-yfd6
Aliases: CVE-2020-27843 |
Multiple vulnerabilities have been found in OpenJPEG, the worst of which could result in the arbitrary execution of code. |
Affected by 24 other vulnerabilities. Affected by 6 other vulnerabilities. |
|
VCID-xh3j-ufru-6fby
Aliases: CVE-2022-1122 |
Access of Uninitialized Pointer A flaw was found in the opj2_decompress program in openjpeg2 2.4.0 in the way it handles an input directory with a large number of files. When it fails to allocate a buffer to store the filenames of the input directory, it calls free() on an uninitialized pointer, leading to a segmentation fault and a denial of service. |
Affected by 0 other vulnerabilities. |
|
VCID-xvjg-5z4m-pqdv
Aliases: CVE-2018-20847 |
openjpeg: integer overflow in function opj_get_encoding_parameters in openjp2/pi.c |
Affected by 6 other vulnerabilities. |
|
VCID-yb58-a8p7-v7dw
Aliases: CVE-2018-21010 |
Multiple vulnerabilities have been found in OpenJPEG, the worst of which could result in the arbitrary execution of code. |
Affected by 6 other vulnerabilities. |
|
VCID-z1a1-p95p-sya2
Aliases: CVE-2018-7648 |
An issue was discovered in mj2/opj_mj2_extract.c in OpenJPEG 2.3.0. The output prefix was not checked for length, which could overflow a buffer, when providing a prefix with 50 or more characters on the command line. |
Affected by 6 other vulnerabilities. |
|
VCID-zgaa-57ak-jbex
Aliases: CVE-2020-27845 |
Multiple vulnerabilities have been found in OpenJPEG, the worst of which could result in the arbitrary execution of code. |
Affected by 24 other vulnerabilities. Affected by 6 other vulnerabilities. |
|
VCID-zmh5-86mb-yqde
Aliases: CVE-2017-14151 |
openjpeg: Heap-based buffer overflow in opj_mqc_flush in mqc.c |
Affected by 24 other vulnerabilities. |
|
VCID-zz9f-brcy-ekdy
Aliases: CVE-2018-16375 |
openjpeg: Heap-based buffer overflow in pnmtoimage function in bin/jpwl/convert.c |
Affected by 6 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-454c-fk3j-g7aa | openjpeg: Heap buffer overflow in function color_cmyk_to_rgb in color.c |
CVE-2016-4796
|
| VCID-4qgw-3tgj-4kas | Double free vulnerability in the j2k_read_ppm_v3 function in OpenJPEG before r2997, as used in PDFium in Google Chrome, allows remote attackers to cause a denial of service (process crash) via a crafted PDF. |
CVE-2015-1239
|
| VCID-5x4u-vqvr-bfhw | security update |
CVE-2016-8332
|
| VCID-6fte-2hrw-z3eb | Multiple vulnerabilities have been found in the Chromium web browser, the worst of which allows remote attackers to execute arbitrary code. |
CVE-2016-5158
|
| VCID-7vw2-fcqu-8bae | security update |
CVE-2017-14152
|
| VCID-8ruh-x3eq-rffk | security update |
CVE-2016-7163
|
| VCID-9ezw-mty9-z3cv | Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow execution of arbitrary code. |
CVE-2015-8871
|
| VCID-9f84-54j5-abbf | security update |
CVE-2015-6581
|
| VCID-9sk8-qkrw-5bdj | openjpeg: Division-by-zero in function opj_tcd_init_tile in tcd.c |
CVE-2016-4797
|
| VCID-bxq4-958j-gybu | Multiple vulnerabilities have been found in the Chromium web browser, the worst of which allows remote attackers to execute arbitrary code. |
CVE-2016-5157
|
| VCID-c6g2-dknk-u3cy | Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow remote attackers to execute arbitrary code. |
CVE-2016-9573
|
| VCID-cgjw-v1jx-1qg3 | Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow remote attackers to execute arbitrary code. |
CVE-2016-10507
|
| VCID-cmhu-2x4c-pqfk | Multiple vulnerabilities have been found in the Chromium web browser, the worst of which allows remote attackers to execute arbitrary code. |
CVE-2016-5139
|
| VCID-drgt-8maa-xqgv | Multiple vulnerabilities have been found in the Chromium web browser, the worst of which allows remote attackers to execute arbitrary code. |
CVE-2016-5152
|
| VCID-dvse-ce3w-p7da | Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow execution of arbitrary code. |
CVE-2016-1923
|
| VCID-e76r-pz11-yfhu | Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow remote attackers to execute arbitrary code. |
CVE-2016-1626
|
| VCID-fq9r-fneu-1fhu | Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow remote attackers to execute arbitrary code. |
CVE-2017-14039
|
| VCID-j8et-rm1k-xkhg | security update |
CVE-2018-5785
|
| VCID-jayn-yzet-k7g5 | Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow remote attackers to execute arbitrary code. |
CVE-2016-9118
|
| VCID-jpxx-3mbf-pyhe | Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow remote attackers to execute arbitrary code. |
CVE-2016-9572
|
| VCID-jqup-3gmb-mqbh | Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow remote attackers to execute arbitrary code. |
CVE-2016-1628
|
| VCID-jvtx-fv51-5bbe | security update |
CVE-2017-14041
|
| VCID-jwrz-ypan-9bg6 | Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow execution of arbitrary code. |
CVE-2016-1924
|
| VCID-kt1c-6859-v3ej | security update |
CVE-2017-17480
|
| VCID-rm5x-1fp6-mfau | security update |
CVE-2018-6616
|
| VCID-t76s-q45b-9ff7 | Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow execution of arbitrary code. |
CVE-2016-3183
|
| VCID-tgph-8x71-qbc2 | security update |
CVE-2018-14423
|
| VCID-ttzh-p89a-mkar | security update |
CVE-2018-18088
|
| VCID-txsw-c8hq-suaj | Multiple vulnerabilities have been found in Chromium, the worst of which can allow remote attackers to cause Denial of Service or gain escalated privileges. |
CVE-2014-7947
|
| VCID-ubrj-hty6-c3cc | Multiple vulnerabilities have been found in the Chromium web browser, the worst of which allows remote attackers to execute arbitrary code. |
CVE-2016-5159
|
| VCID-uzpe-dvyu-ckfc | security update |
CVE-2017-14040
|
| VCID-vt59-h7ax-7uca | Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow execution of arbitrary code. |
CVE-2016-7445
|
| VCID-vxw5-nm1p-q3d5 | Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow execution of arbitrary code. |
CVE-2016-3182
|