Denial Of Service (DoS)

2019-06-2702:53:46

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.001 Low

EPSS

Percentile

50.9%

JSON

libopenjpeg.so is vulnerable to denial of service (DoS). The functions pi_next_lrcp, pi_next_rlcp, pi_next_rpcl, pi_next_pcrl, pi_next_rpcl, and pi_next_cprl in openmj2/pi.c cause division-by-zero error, leading to an application crash.

CPENameOperatorVersion
libopenjpeg.sole2.1.3.0
libopenjpeg.sole2.1.3.0

CPE	Name	Operator	Version
	libopenjpeg.so	le	2.1.3.0
	libopenjpeg.so	le	2.1.3.0

References

www.securityfocus.com/bid/108921

github.com/uclouvain/openjpeg/pull/1168

github.com/uclouvain/openjpeg/pull/1168/commits/c277159986c80142180fbe5efb256bbf3bdf3edc

0.001 Low

EPSS

Percentile

50.9%

JSON

Related for VERACODE:20611