Search CVE reports
81 – 90 of 96 results
Some fixes available 8 of 13
Double free vulnerability in the opj_j2k_copy_default_tcp_and_create_tcd function in j2k.c in OpenJPEG before r3002, as used in PDFium in Google Chrome before 45.0.2454.85, allows remote attackers to execute arbitrary code or...
3 affected packages
chromium-browser, openjpeg, oxide-qt
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| chromium-browser | — | — | — | — | Fixed |
| openjpeg | — | — | — | — | Not in release |
| oxide-qt | — | — | — | — | Not in release |
Some fixes available 23 of 31
Heap-based buffer overflow in j2k.c in OpenJPEG before r3002, as used in PDFium in Google Chrome before 44.0.2403.89, allows remote attackers to cause a denial of service or possibly have unspecified other impact via invalid...
3 affected packages
chromium-browser, oxide-qt, openjpeg
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| chromium-browser | — | Fixed | Fixed | Fixed | Fixed |
| oxide-qt | — | Not in release | Not in release | Not in release | Not in release |
| openjpeg | — | Not in release | Not in release | Not in release | Not in release |
Some fixes available 25 of 51
OpenJPEG before r2944, as used in PDFium in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PDF document, related to j2k.c, jp2.c, pi.c, t1.c, t2.c, and tcd.c.
7 affected packages
gdcm, insighttoolkit4, chromium-browser, openjpeg, openjpeg2...
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gdcm | — | Not affected | Not affected | Not affected | Not affected |
| insighttoolkit4 | — | Not in release | Not affected | Not affected | Not affected |
| chromium-browser | — | Fixed | Fixed | Fixed | Fixed |
| openjpeg | — | Not in release | Not in release | Not in release | Not in release |
| openjpeg2 | — | Not affected | Not affected | Not affected | Not affected |
| oxide-qt | — | Not in release | Not in release | Not in release | Not in release |
| vxl | — | Not in release | Not in release | Not in release | Not in release |
Some fixes available 25 of 51
OpenJPEG before r2908, as used in PDFium in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PDF document, related to j2k.c, jp2.c, and t2.c.
7 affected packages
gdcm, insighttoolkit4, chromium-browser, openjpeg, openjpeg2...
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gdcm | — | Not affected | Not affected | Not affected | Not affected |
| insighttoolkit4 | — | Not in release | Not affected | Not affected | Not affected |
| chromium-browser | — | Fixed | Fixed | Fixed | Fixed |
| openjpeg | — | Not in release | Not in release | Not in release | Not in release |
| openjpeg2 | — | Not affected | Not affected | Not affected | Not affected |
| oxide-qt | — | Not in release | Not in release | Not in release | Not in release |
| vxl | — | Not in release | Not in release | Not in release | Not in release |
OpenJPEG 1.5.1 allows remote attackers to obtain sensitive information via unspecified vectors that trigger a heap-based out-of-bounds read.
1 affected package
openjpeg
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| openjpeg | — | — | — | — | Not in release |
OpenJPEG 1.5.1 allows remote attackers to cause a denial of service via unspecified vectors that trigger NULL pointer dereferences, division-by-zero, and other errors.
1 affected package
openjpeg
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| openjpeg | — | — | — | — | Not in release |
Stack-based buffer overflow in OpenJPEG before 1.5.2 allows remote attackers to have unspecified impact via unknown vectors to (1) lib/openjp3d/opj_jp3d_compress.c, (2) bin/jp3d/convert.c, or (3) lib/openjp3d/event.c.
1 affected package
openjpeg
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| openjpeg | — | — | — | — | Not in release |
Multiple integer overflows in lib/openjp3d/jp3d.c in OpenJPEG before 1.5.2 allow remote attackers to have unspecified impact and vectors, which trigger a heap-based buffer overflow.
1 affected package
openjpeg
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| openjpeg | — | — | — | — | Not in release |
Some fixes available 2 of 5
Heap-based buffer overflow in OpenJPEG 1.3 has unspecified impact and remote vectors, a different vulnerability than CVE-2013-6045.
1 affected package
openjpeg
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| openjpeg | — | — | — | — | — |
Some fixes available 2 of 5
OpenJPEG 1.3 and earlier allows remote attackers to obtain sensitive information via unspecified vectors that trigger a heap-based out-of-bounds read.
1 affected package
openjpeg
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| openjpeg | — | — | — | — | — |