0.005 Low
EPSS
Percentile
76.1%
Integer overflow vulnerability in the bmp24toimage function in convertbmp.c in OpenJPEG before 2.2.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted bmp file.
bugzilla.redhat.com/show_bug.cgi?id=1487377