CVE-2019-12973

Published: Jun 26, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

In OpenJPEG 2.3.1, there is excessive iteration in the opj_t1_encode_cblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file. This issue is similar to CVE-2018-6616.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

108900

vdb-entry

x_refsource_BID

openSUSE-SU-2019:2222

vendor-advisory

x_refsource_SUSE

openSUSE-SU-2019:2223

vendor-advisory

x_refsource_SUSE

[debian-lts-announce] 20200710 [SECURITY] [DLA 2277-1] openjpeg2 security update

mailing-list

x_refsource_MLIST

https://www.oracle.com/security-alerts/cpujul2020.html

x_refsource_MISC

https://github.com/uclouvain/openjpeg/pull/1185/commits/cbe7384016083eac16078b359acd7a842253d503

x_refsource_MISC

https://github.com/uclouvain/openjpeg/commit/8ee335227bbcaf1614124046aa25e53d67b11ec3

x_refsource_MISC

GLSA-202101-29

vendor-advisory

x_refsource_GENTOO

https://www.oracle.com//security-alerts/cpujul2021.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-12973

Description

Affected Products

References