Multiple heap-based buffer overflows in the j2k_read_sot function in j2k.c in OpenJPEG 1.5 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted (1) tile number or (2) tile length in a JPEG 2000 image file.
| Product | Vendor | Version |
|---|---|---|
| n/a | n/a | < a535c0b10060bc8c174a7964b0f98064ee0c4774 |