USN-7223-1

Advisory lineage Upstream: 4 Downstream: 0

Upstream

CVE-2024-56826 CVE-2024-56827 UBUNTU-CVE-2024-56826 UBUNTU-CVE-2024-56827

Published: 22 Jan 2025, 15:35

Last modified:20 May 2026, 16:03

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

22 Jan 2025, 15:35

Published

Vulnerability first disclosed

20 May 2026, 16:03

Last Modified

Vulnerability information updated

Description

openjpeg2 vulnerabilities Frank Zeng discovered that OpenJPEG incorrectly handled memory when using the decompression utility. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2024-56826, CVE-2024-56827)

Affected Systems

ubuntu•openjpeg2
< 2.1.2-1.1+deb9u6ubuntu0.1~esm7 | < 2.3.0-2+deb10u2ubuntu0.1~esm4 | < 2.3.1-1ubuntu4.20.04.4 | < 2.4.0-6ubuntu0.3 | < 2.5.0-2ubuntu0.3

References (3)

https://ubuntu.com/security/notices/USN-7223-1
https://ubuntu.com/security/CVE-2024-56826
https://ubuntu.com/security/CVE-2024-56827