Search for packages
| purl | pkg:alpm/archlinux/openjpeg2@2.5.0-1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-898n-muvn-cyec | Out-of-bounds accesses in the functions pi_next_lrcp, pi_next_rlcp, pi_next_rpcl, pi_next_pcrl, pi_next_rpcl, and pi_next_cprl in openmj2/pi.c in OpenJPEG through 2.3.0 allow remote attackers to cause a denial of service (application crash). |
CVE-2018-20846
|
| VCID-bfn9-bjca-s7ev | Integer Overflow in OpenJPEG v2.4.0 allows remote attackers to crash the application, causing a Denial of Service (DoS). This occurs when the attacker uses the command line option "-ImgDir" on a directory that contains 1048576 files. |
CVE-2021-29338
|
| VCID-ndnf-pt9s-gydr | An issue was discovered in OpenJPEG 2.3.0. It allows remote attackers to cause a denial of service (attempted excessive memory allocation) in opj_calloc in openjp2/opj_malloc.c, when called from opj_tcd_init_tile in openjp2/tcd.c, as demonstrated by the 64-bit opj_decompress. |
CVE-2019-6988
|
| VCID-uqsw-phs9-9fh7 | openjpeg: Heap-based buffer overflow in function t2_encode_packet in src/lib/openmj2/t2.c |
CVE-2018-16376
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-07-31T11:37:30.994204+00:00 | Arch Linux Importer | Fixing | VCID-uqsw-phs9-9fh7 | https://security.archlinux.org/AVG-1390 | 37.0.0 |
| 2025-07-31T11:37:30.968641+00:00 | Arch Linux Importer | Fixing | VCID-898n-muvn-cyec | https://security.archlinux.org/AVG-1390 | 37.0.0 |
| 2025-07-31T11:37:30.941923+00:00 | Arch Linux Importer | Fixing | VCID-ndnf-pt9s-gydr | https://security.archlinux.org/AVG-1390 | 37.0.0 |
| 2025-07-31T11:37:30.913338+00:00 | Arch Linux Importer | Fixing | VCID-bfn9-bjca-s7ev | https://security.archlinux.org/AVG-1390 | 37.0.0 |