CVE-2019-6988

N/A

Descricao

An issue was discovered in OpenJPEG 2.3.0. It allows remote attackers to cause a denial of service (attempted excessive memory allocation) in opj_calloc in openjp2/opj_malloc.c, when called from opj_tcd_init_tile in openjp2/tcd.c, as demonstrated by the 64-bit opj_decompress.

Detalhes CVE

Pontuacao CVSS v3.1N/A

Publicado1/28/2019

Ultima modificacao11/21/2024

Fontenvd

Avistamentos honeypot0

Produtos afetados

uclouvain:openjpeg

Fraquezas (CWE)

CWE-770

Referencias

http://www.securityfocus.com/bid/106785(cve@mitre.org)

https://github.com/uclouvain/openjpeg/issues/1178(cve@mitre.org)

http://www.securityfocus.com/bid/106785(af854a3a-2127-422b-91ae-364da2661108)

https://github.com/uclouvain/openjpeg/issues/1178(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.