CVE Vulnerabilities

CVE-2013-4289

Published: Apr 18, 2014 | Modified: Sep 09, 2020
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
6.8 IMPORTANT
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V3
Ubuntu

Multiple integer overflows in lib/openjp3d/jp3d.c in OpenJPEG before 1.5.2 allow remote attackers to have unspecified impact and vectors, which trigger a heap-based buffer overflow.

Affected Software

Name Vendor Start Version End Version
Openjpeg Uclouvain 1.3 1.3
Openjpeg Uclouvain 1.4 1.4
Openjpeg Uclouvain 1.5 1.5
Openjpeg Uclouvain * 1.5.1
Openjpeg Ubuntu lucid *
Openjpeg Ubuntu precise *
Openjpeg Ubuntu quantal *
Openjpeg Ubuntu raring *
Openjpeg Ubuntu saucy *
Openjpeg Ubuntu trusty *
Openjpeg Ubuntu utopic *
Openjpeg Ubuntu vivid *
Openjpeg Ubuntu wily *
Openjpeg Ubuntu yakkety *

References