Lucene search
GoogleOSV:CVE-2019-12973HistoryJun 26, 2019 - 6:15 p.m.
CVE-2019-12973
2019-06-2618:15:10
Google
osv.dev
9
0.003 Low
EPSS
Percentile
71.6%
In OpenJPEG 2.3.1, there is excessive iteration in the opj_t1_encode_cblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file. This issue is similar to CVE-2018-6616.
References
lists.opensuse.org/opensuse-security-announce/2019-09/msg00088.html
lists.opensuse.org/opensuse-security-announce/2019-09/msg00090.html
www.securityfocus.com/bid/108900
github.com/uclouvain/openjpeg/commit/8ee335227bbcaf1614124046aa25e53d67b11ec3
github.com/uclouvain/openjpeg/pull/1185/commits/cbe7384016083eac16078b359acd7a842253d503
lists.debian.org/debian-lts-announce/2020/07/msg00008.html
security.gentoo.org/glsa/202101-29
www.oracle.com//security-alerts/cpujul2021.html
www.oracle.com/security-alerts/cpujul2020.html
Related
openvas
openvas
Huawei EulerOS: Security Advisory for openjpeg2 (EulerOS-SA-2022-1811)
2022-06-07 00:00:00
Huawei EulerOS: Security Advisory for openjpeg2 (EulerOS-SA-2022-1872)
2022-06-16 00:00:00
Huawei EulerOS: Security Advisory for openjpeg2 (EulerOS-SA-2022-2204)
2022-08-01 00:00:00
nvd
nvd
CVE-2019-12973
2019-06-26 18:15:10
CVE-2018-6616
2018-02-04 22:29:00
alpinelinux
alpinelinux
CVE-2019-12973
2019-06-26 18:15:10
CVE-2018-6616
2018-02-04 22:29:00
nessus
nessus
EulerOS 2.0 SP9 : openjpeg2 (EulerOS-SA-2022-1848)
2022-06-15 00:00:00
EulerOS Virtualization 2.9.0 : openjpeg2 (EulerOS-SA-2022-2204)
2022-07-29 00:00:00
EulerOS 2.0 SP10 : openjpeg2 (EulerOS-SA-2022-1794)
2022-06-06 00:00:00
cve
cve
CVE-2019-12973
2019-06-26 18:15:10
CVE-2018-6616
2018-02-04 22:29:00
ubuntucve
ubuntucve
CVE-2019-12973
2019-06-26 00:00:00
CVE-2018-6616
2018-02-04 00:00:00
cvelist
cvelist
CVE-2019-12973
2019-06-26 17:07:51
CVE-2018-6616
2018-02-04 22:00:00
redhatcve
redhatcve
CVE-2019-12973
2020-04-08 05:22:37
CVE-2018-6616
2019-04-11 20:50:14
debiancve
debiancve
CVE-2019-12973
2019-06-26 18:15:10
CVE-2018-6616
2018-02-04 22:29:00
mageia
mageia
Updated openjpeg2 packages fix security vulnerability
2019-12-06 17:15:42
Updated openjpeg2 packages fix security vulnerabilities
2019-01-05 21:30:16
prion
prion
Code injection
2019-06-26 18:15:00
Design/Logic Flaw
2018-02-04 22:29:00
veracode
veracode
Denial Of Service (DoS)
2020-09-18 07:31:19
Denial Of Service (DoS)
2021-02-03 07:31:02
debian
debian
[SECURITY] [DLA 2277-1] openjpeg2 security update
2020-07-10 20:01:49
[SECURITY] [DLA 1614-1] openjpeg2 security update
2018-12-22 13:57:35
[SECURITY] [DSA 4405-1] openjpeg2 security update
2019-03-10 14:35:51
osv
osv
CVE-2018-6616
2018-02-04 22:29:00
openjpeg2 - security update
2018-12-22 00:00:00
openjpeg2 - security update
2020-07-11 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: openjpeg2-2.3.0-10.fc29
2018-12-24 06:08:36
[SECURITY] Fedora 29 Update: mingw-openjpeg2-2.3.0-6.fc29
2018-12-24 06:08:36
[SECURITY] Fedora 28 Update: openjpeg2-2.3.0-10.fc28
2018-12-29 02:26:15
archlinux
archlinux
[ASA-202012-21] openjpeg2: multiple issues
2020-12-09 00:00:00
freebsd
freebsd
OpenJPEG -- multiple vulnerabilities
2017-12-08 00:00:00
ubuntu
ubuntu
OpenJPEG vulnerabilities
2019-08-21 00:00:00
OpenJPEG vulnerabilities
2021-03-17 00:00:00
OpenJPEG vulnerabilities
2020-09-15 00:00:00
cloudfoundry
cloudfoundry
USN-4109-1: OpenJPEG vulnerabilities | Cloud Foundry
2019-08-29 00:00:00
suse
suse
Security update for ghostscript (important)
2019-09-30 00:00:00
Security update for ghostscript (important)
2019-09-30 00:00:00
Security update for openjpeg2 (important)
2022-04-19 00:00:00
amazon
amazon
Medium: openjpeg2
2022-01-18 21:37:00
gentoo
gentoo
OpenJPEG: Multiple vulnerabilities
2021-01-26 00:00:00
redhat
redhat
(RHSA-2021:4251) Moderate: openjpeg2 security update
2021-11-09 08:51:11
almalinux
almalinux
Moderate: openjpeg2 security update
2021-11-09 08:51:11
oraclelinux
oraclelinux
openjpeg2 security update
2021-11-16 00:00:00
rocky
rocky
openjpeg2 security update
2021-11-09 08:51:11
oracle
oracle
Oracle Critical Patch Update Advisory - July 2020
2020-07-14 00:00:00
Oracle Critical Patch Update Advisory - January 2023
2023-01-17 00:00:00
Oracle Critical Patch Update Advisory - July 2021
2021-07-20 00:00:00