Lucene search

K

PRIOn knowledge basePRION:CVE-2019-12973

HistoryJun 26, 2019 - 6:15 p.m.

Code injection

2019-06-2618:15:00

PRIOn knowledge base

www.prio-n.com

14

6.1 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.6%

In OpenJPEG 2.3.1, there is excessive iteration in the opj_t1_encode_cblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file. This issue is similar to CVE-2018-6616.

CPENameOperatorVersion
debian_linuxeq9.0
leapeq15.0
leapeq15.1
database_servereq18.0.99
outside_in_technologyeq8.5.4
outside_in_technologyeq8.5.5
openjpegeq2.3.1

References

lists.opensuse.org/opensuse-security-announce/2019-09/msg00088.html

lists.opensuse.org/opensuse-security-announce/2019-09/msg00090.html

www.securityfocus.com/bid/108900

github.com/uclouvain/openjpeg/commit/8ee335227bbcaf1614124046aa25e53d67b11ec3

github.com/uclouvain/openjpeg/pull/1185/commits/cbe7384016083eac16078b359acd7a842253d503

lists.debian.org/debian-lts-announce/2020/07/msg00008.html

security.gentoo.org/glsa/202101-29

www.oracle.com//security-alerts/cpujul2021.html

www.oracle.com/security-alerts/cpujul2020.html

6.1 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.6%

Related for PRION:CVE-2019-12973