CVE-2020-27814

CVE-2020-27814

Name

CVE-2020-27814

Description

A heap-buffer overflow was found in the way openjpeg2 handled certain PNG format files. An attacker could use this flaw to cause an application crash or in some cases execute arbitrary code with the permission of the user running such an application.

NVD Severity

medium

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
Issue Tracking	https://bugzilla.redhat.com/show_bug.cgi?id=1901998
Third Party Advisory	https://security.gentoo.org/glsa/202101-29
Exploit	https://github.com/uclouvain/openjpeg/issues/1283
Mailing List	https://lists.debian.org/debian-lts-announce/2021/02/msg00011.html
DEBIAN	https://www.debian.org/security/2021/dsa-4882
N/A	https://www.oracle.com//security-alerts/cpujul2021.html

Type

URI

Issue Tracking

https://bugzilla.redhat.com/show_bug.cgi?id=1901998

Third Party Advisory

https://security.gentoo.org/glsa/202101-29

Exploit

https://github.com/uclouvain/openjpeg/issues/1283

Mailing List

https://lists.debian.org/debian-lts-announce/2021/02/msg00011.html

DEBIAN

https://www.debian.org/security/2021/dsa-4882