VulnerableCode Package Details - pkg:rpm/redhat/openjpeg2@2.4.0-4?arch=el8

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:rpm/redhat/openjpeg2@2.4.0-4?arch=el8

Essentials
History (14)

purl	pkg:rpm/redhat/openjpeg2@2.4.0-4?arch=el8

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	3.5

Vulnerabilities affecting this package (14)

Vulnerability	Summary	Fixed by
VCID-2272-j2kp-x3du Aliases: CVE-2019-12973	Multiple vulnerabilities have been found in OpenJPEG, the worst of which could result in the arbitrary execution of code.	There are no reported fixed by versions.
VCID-2ad2-5t5w-d7ew Aliases: CVE-2020-27824	openjpeg: global-buffer-overflow read in opj_dwt_calc_explicit_stepsizes()	There are no reported fixed by versions.
VCID-3r1m-53dp-yff2 Aliases: CVE-2020-27842	Multiple vulnerabilities have been found in OpenJPEG, the worst of which could result in the arbitrary execution of code.	There are no reported fixed by versions.
VCID-an46-hxt9-57e1 Aliases: CVE-2021-3575	Out-of-bounds Write A heap-based buffer overflow was found in openjpeg in color.c:379:42 in sycc420_to_rgb when decompressing a crafted .j2k file. An attacker could use this to execute arbitrary code with the permissions of the application compiled against openjpeg.	There are no reported fixed by versions.
VCID-ecez-3pwt-pudf Aliases: CVE-2018-20845	openjpeg: division-by-zero in functions pi_next_pcrl, pi_next_cprl, and pi_next_rpcl in openmj2/pi.c	There are no reported fixed by versions.
VCID-hxax-t3zc-8kax Aliases: CVE-2018-5727	openjpeg: integer overflow in opj_t1_encode_cblks in src/lib/openjp2/t1.c	There are no reported fixed by versions.
VCID-j8et-rm1k-xkhg Aliases: CVE-2018-5785	security update	There are no reported fixed by versions.
VCID-kq91-13ek-rkcu Aliases: CVE-2020-15389	Multiple vulnerabilities have been found in OpenJPEG, the worst of which could result in the arbitrary execution of code.	There are no reported fixed by versions.
VCID-pzv2-p44c-8qg4 Aliases: CVE-2021-29338	Multiple vulnerabilities have been discovered in OpenJPEG, the worst of which could result in arbitrary code execution.	There are no reported fixed by versions.
VCID-u497-trj1-rfdj Aliases: CVE-2020-27814	Multiple vulnerabilities have been found in OpenJPEG, the worst of which could result in the arbitrary execution of code.	There are no reported fixed by versions.
VCID-whsh-5urk-b3ap Aliases: CVE-2020-27823	openjpeg: heap-buffer-overflow write in opj_tcd_dc_level_shift_encode()	There are no reported fixed by versions.
VCID-xc4v-2aa6-yfd6 Aliases: CVE-2020-27843	Multiple vulnerabilities have been found in OpenJPEG, the worst of which could result in the arbitrary execution of code.	There are no reported fixed by versions.
VCID-xvjg-5z4m-pqdv Aliases: CVE-2018-20847	openjpeg: integer overflow in function opj_get_encoding_parameters in openjp2/pi.c	There are no reported fixed by versions.
VCID-zgaa-57ak-jbex Aliases: CVE-2020-27845	Multiple vulnerabilities have been found in OpenJPEG, the worst of which could result in the arbitrary execution of code.	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T14:26:36.687709+00:00	RedHat Importer	Affected by	VCID-hxax-t3zc-8kax	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5727.json	38.0.0
2026-04-01T14:26:30.914147+00:00	RedHat Importer	Affected by	VCID-j8et-rm1k-xkhg	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5785.json	38.0.0
2026-04-01T14:18:34.120483+00:00	RedHat Importer	Affected by	VCID-2272-j2kp-x3du	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12973.json	38.0.0
2026-04-01T14:18:34.071605+00:00	RedHat Importer	Affected by	VCID-xvjg-5z4m-pqdv	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20847.json	38.0.0
2026-04-01T14:18:34.043487+00:00	RedHat Importer	Affected by	VCID-ecez-3pwt-pudf	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20845.json	38.0.0
2026-04-01T14:05:59.097323+00:00	RedHat Importer	Affected by	VCID-kq91-13ek-rkcu	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15389.json	38.0.0
2026-04-01T14:03:50.889945+00:00	RedHat Importer	Affected by	VCID-u497-trj1-rfdj	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27814.json	38.0.0
2026-04-01T14:03:50.199376+00:00	RedHat Importer	Affected by	VCID-whsh-5urk-b3ap	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27823.json	38.0.0
2026-04-01T14:03:50.170054+00:00	RedHat Importer	Affected by	VCID-2ad2-5t5w-d7ew	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27824.json	38.0.0
2026-04-01T14:03:49.585097+00:00	RedHat Importer	Affected by	VCID-3r1m-53dp-yff2	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27842.json	38.0.0
2026-04-01T14:03:49.073704+00:00	RedHat Importer	Affected by	VCID-zgaa-57ak-jbex	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27845.json	38.0.0
2026-04-01T14:03:49.025460+00:00	RedHat Importer	Affected by	VCID-xc4v-2aa6-yfd6	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27843.json	38.0.0
2026-04-01T14:02:43.872393+00:00	RedHat Importer	Affected by	VCID-pzv2-p44c-8qg4	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-29338.json	38.0.0
2026-04-01T14:02:22.511120+00:00	RedHat Importer	Affected by	VCID-an46-hxt9-57e1	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3575.json	38.0.0