First published: Tue Mar 15 2016(Updated: )
n our-of-bounds read vulnerability in sycc422_to_rgb function triggered by specially crafted JPEG2000 image file was found in openjpeg version 2016.03.14. CVE request (contains reproducer): <a href="http://seclists.org/oss-sec/2016/q1/632">http://seclists.org/oss-sec/2016/q1/632</a>
Affected Software | Affected Version | How to fix |
---|---|---|
OpenJPEG |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of REDHAT-BUG-1317821 is considered high due to the potential for an out-of-bounds read vulnerability.
To fix REDHAT-BUG-1317821, upgrade to the latest version of OpenJPEG that addresses this vulnerability.
REDHAT-BUG-1317821 is caused by an out-of-bounds read vulnerability triggered by specially crafted JPEG2000 image files.
REDHAT-BUG-1317821 affects the OpenJPEG library version 2016.03.14.
Yes, REDHAT-BUG-1317821 can potentially be exploited remotely through the processing of malicious JPEG2000 files.