Lucene search

K

Veracode Vulnerability DatabaseVERACODE:18515

HistoryMay 02, 2019 - 6:43 a.m.

Denial Of Service (DoS)

2019-05-0206:43:17

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

10

0.021 Low

EPSS

Percentile

89.2%

OpenJPEG is vulnerable to denial of service attacks. A remote unauthenticated attacker could exploit the vulnerable PDFium component to cause denial of service conditions via crafted JPEG 2000 data that is mishandled during opj_aligned_malloc calls in dwt.c and t1.c.

CPENameOperatorVersion
openjpegeq1.3__9.el6_3
openjpegeq1.3__8.el6_3
openjpegeq1.3__10.el6_5
openjpegeq1.3__11.el6
openjpegeq1.3__7.el6
openjpegeq1.3__9.el6_3
openjpegeq1.3__8.el6_3
openjpegeq1.3__10.el6_5
openjpegeq1.3__11.el6
openjpegeq1.3__7.el6

References

lists.opensuse.org/opensuse-security-announce/2016-09/msg00003.html

lists.opensuse.org/opensuse-security-announce/2016-09/msg00004.html

lists.opensuse.org/opensuse-security-announce/2016-09/msg00008.html

lists.opensuse.org/opensuse-updates/2016-09/msg00073.html

rhn.redhat.com/errata/RHSA-2016-1854.html

rhn.redhat.com/errata/RHSA-2017-0559.html

rhn.redhat.com/errata/RHSA-2017-0838.html

www.debian.org/security/2016/dsa-3660

www.debian.org/security/2017/dsa-3768

www.securityfocus.com/bid/92717

www.securitytracker.com/id/1036729

access.redhat.com/errata/RHSA-2017:0559

access.redhat.com/security/updates/classification/#moderate

codereview.chromium.org/2218783002/

crbug.com/628304

googlechromereleases.blogspot.com/2016/08/stable-channel-update-for-desktop_31.html

security.gentoo.org/glsa/201610-09

0.021 Low

EPSS

Percentile

89.2%

Related for VERACODE:18515

prion1 debiancve1 ubuntucve1 redhatcve1 nvd1 cve1 cvelist1 nessus28 debian3 openvas21 osv2 oraclelinux2 mageia2 kitploit1 redhat3 centos2 amazon1 ibm1 fedora4 suse3 archlinux1 threatpost1 chrome1 freebsd1 kaspersky1 gentoo1