USN-5664-1

Advisory lineage Upstream: 12 Downstream: 0

Upstream

CVE-2016-10506 CVE-2016-7445 CVE-2016-9112 CVE-2017-17479 CVE-2018-18088 CVE-2020-27824

Published: 07 Oct 2022, 21:44

Last modified:20 May 2026, 16:03

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

07 Oct 2022, 21:44

Published

Vulnerability first disclosed

20 May 2026, 16:03

Last Modified

Vulnerability information updated

Description

openjpeg vulnerabilities It was discovered that OpenJPEG did not properly handle PNM headers, resulting in a null pointer dereference. A remote attacker could possibly use this issue to cause a denial of service (DoS). (CVE-2016-7445) It was discovered that OpenJPEG incorrectly handled certain image files resulting in division by zero. A remote attacker could possibly use this issue to cause a denial of service (DoS). (CVE-2016-9112 and CVE-2016-10506) It was discovered that OpenJPEG incorrectly handled converting certain image files resulting in a stack buffer overflow. A remote attacker could possibly use this issue to cause a denial of service (DoS). (CVE-2017-17479) It was discovered that OpenJPEG incorrectly handled converting PNM image files resulting in a null pointer dereference. A remote attacker could possibly use this issue to cause a denial of service (DoS). (CVE-2018-18088) It was discovered that OpenJPEG incorrectly handled converting DWT images files resulting in a buffer overflow. A remote attacker could possibly use this issue to cause a denial of service (DoS). (CVE-2020-27824)

Affected Systems

ubuntu•openjpeg
< 1:1.5.2-3.1ubuntu0.1~esm2

USN-5664-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (7)