CVE-2020-27814

Name
CVE-2020-27814
Description
A heap-buffer overflow was found in the way openjpeg2 handled certain PNG format files. An attacker could use this flaw to cause an application crash or in some cases execute arbitrary code with the permission of the user running such an application.
NVD Severity
medium
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=1901998
Third Party Advisory https://security.gentoo.org/glsa/202101-29
Exploit https://github.com/uclouvain/openjpeg/issues/1283
Mailing List https://lists.debian.org/debian-lts-announce/2021/02/msg00011.html
DEBIAN https://www.debian.org/security/2021/dsa-4882
N/A https://www.oracle.com//security-alerts/cpujul2021.html

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:uclouvain:openjpeg:*:*:*:*:*:*:*:* openjpeg >= None <= 1.5.1
cpe:2.3:a:uclouvain:openjpeg:*:*:*:*:*:*:*:* openjpeg >= 2.0.0 < 2.4.0

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
openjpeg edge-main 2.3.1-r6 None fixed
openjpeg edge-main 2.3.1-r5 None possibly vulnerable
openjpeg edge-main 2.3.1-r3 None possibly vulnerable
openjpeg edge-main 2.3.0-r3 None possibly vulnerable
openjpeg edge-main 2.3.0-r2 None possibly vulnerable
openjpeg edge-main 2.3.0-r1 None possibly vulnerable
openjpeg edge-main 2.3.0-r0 None possibly vulnerable
openjpeg edge-main 2.2.0-r2 None possibly vulnerable
openjpeg edge-main 2.2.0-r1 None possibly vulnerable
openjpeg edge-main 2.1.2-r1 None possibly vulnerable
openjpeg 3.22-main 2.3.1-r6 None fixed
openjpeg 3.22-main 2.3.1-r5 None possibly vulnerable
openjpeg 3.22-main 2.3.1-r3 None possibly vulnerable
openjpeg 3.22-main 2.3.0-r3 None possibly vulnerable
openjpeg 3.22-main 2.3.0-r2 None possibly vulnerable
openjpeg 3.22-main 2.3.0-r1 None possibly vulnerable
openjpeg 3.22-main 2.3.0-r0 None possibly vulnerable
openjpeg 3.22-main 2.2.0-r2 None possibly vulnerable
openjpeg 3.22-main 2.2.0-r1 None possibly vulnerable
openjpeg 3.22-main 2.1.2-r1 None possibly vulnerable
openjpeg 3.21-main 2.3.1-r6 None fixed
openjpeg 3.21-main 2.3.1-r5 None possibly vulnerable
openjpeg 3.21-main 2.3.1-r3 None possibly vulnerable
openjpeg 3.21-main 2.3.0-r3 None possibly vulnerable
openjpeg 3.21-main 2.3.0-r2 None possibly vulnerable
openjpeg 3.21-main 2.3.0-r1 None possibly vulnerable
openjpeg 3.21-main 2.3.0-r0 None possibly vulnerable
openjpeg 3.21-main 2.2.0-r2 None possibly vulnerable
openjpeg 3.21-main 2.2.0-r1 None possibly vulnerable
openjpeg 3.21-main 2.1.2-r1 None possibly vulnerable
openjpeg 3.20-main 2.3.1-r6 None fixed
openjpeg 3.20-main 2.3.1-r5 None possibly vulnerable
openjpeg 3.20-main 2.3.1-r3 None possibly vulnerable
openjpeg 3.20-main 2.3.0-r3 None possibly vulnerable
openjpeg 3.20-main 2.3.0-r2 None possibly vulnerable
openjpeg 3.20-main 2.3.0-r1 None possibly vulnerable
openjpeg 3.20-main 2.3.0-r0 None possibly vulnerable
openjpeg 3.20-main 2.2.0-r2 None possibly vulnerable
openjpeg 3.20-main 2.2.0-r1 None possibly vulnerable
openjpeg 3.20-main 2.1.2-r1 None possibly vulnerable
openjpeg 3.19-main 2.3.1-r6 None fixed
openjpeg 3.19-main 2.3.1-r5 None possibly vulnerable
openjpeg 3.19-main 2.3.1-r3 None possibly vulnerable
openjpeg 3.19-main 2.3.0-r3 None possibly vulnerable
openjpeg 3.19-main 2.3.0-r2 None possibly vulnerable
openjpeg 3.19-main 2.3.0-r1 None possibly vulnerable
openjpeg 3.19-main 2.3.0-r0 None possibly vulnerable
openjpeg 3.19-main 2.2.0-r2 None possibly vulnerable
openjpeg 3.19-main 2.2.0-r1 None possibly vulnerable
openjpeg 3.19-main 2.1.2-r1 None possibly vulnerable
openjpeg 3.18-main 2.3.1-r6 None fixed
openjpeg 3.17-main 2.3.1-r6 None fixed
openjpeg 3.12-main 2.3.1-r6 None fixed
openjpeg 3.11-main 2.3.1-r5 None fixed
openjpeg 3.10-main 2.3.1-r5 None fixed