CVE-2016-7163

Published: Sep 21, 2016

Modified: Aug 6, 2024

PUBLISHED

Description

Integer overflow in the opj_pi_create_decode function in pi.c in OpenJPEG allows remote attackers to execute arbitrary code via a crafted JP2 file, which triggers an out-of-bounds read or write.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20160908 Re: CVE Request: OpenJPEG Integer Overflow Issue

mailing-list

x_refsource_MLIST

92897

vdb-entry

x_refsource_BID

[oss-security] 20160908 CVE Request: OpenJPEG Integer Overflow Issue

mailing-list

x_refsource_MLIST

FEDORA-2016-231f53426b

vendor-advisory

x_refsource_FEDORA

FEDORA-2016-8ed6b7bb5e

vendor-advisory

x_refsource_FEDORA

RHSA-2017:0559

vendor-advisory

x_refsource_REDHAT

https://github.com/uclouvain/openjpeg/issues/826

x_refsource_CONFIRM

RHSA-2017:0838

vendor-advisory

x_refsource_REDHAT

https://github.com/uclouvain/openjpeg/commit/ef01f18dfc6780b776d0674ed3e7415c6ef54d24

x_refsource_CONFIRM

DSA-3665

vendor-advisory

x_refsource_DEBIAN

https://github.com/uclouvain/openjpeg/pull/809

x_refsource_CONFIRM

FEDORA-2016-dc53ceffc2

vendor-advisory

x_refsource_FEDORA

FEDORA-2016-2eac99579c

vendor-advisory

x_refsource_FEDORA

https://github.com/uclouvain/openjpeg/commit/c16bc057ba3f125051c9966cf1f5b68a05681de4

x_refsource_CONFIRM

FEDORA-2016-27d3b7742f

vendor-advisory

x_refsource_FEDORA

FEDORA-2016-adb346980c

vendor-advisory

x_refsource_FEDORA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2016-7163

Description

Affected Products

References