CVE-2016-3182

Published: 2/20/2020 Last updated: 8/5/2024 Reserved: 3/15/2016

The color_esycc_to_rgb function in bin/common/color.c in OpenJPEG before 2.1.1 allows attackers to cause a denial of service (memory corruption) via a crafted jpeg 2000 file.

CNA assigner: mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca) Requested by: n/a

Opam packages affected (1)

grib

Products affected (1)

Product	Vendor	Version
n/a	n/a	All versions before 1.3.2 and version 2.0.0.

References (8)

http://www.openwall.com/lists/oss-security/2016/09/27/1
http://www.openwall.com/lists/oss-security/2016/03/16/16
https://bugzilla.redhat.com/show_bug.cgi?id=1317826
https://github.com/uclouvain/openjpeg/issues/725
http://www.openwall.com/lists/oss-security/2016/09/27/1
http://www.openwall.com/lists/oss-security/2016/03/16/16
https://bugzilla.redhat.com/show_bug.cgi?id=1317826
https://github.com/uclouvain/openjpeg/issues/725