Opened 6 months ago
Closed 6 months ago
New point version
Fix memory-related bugs in the JPEG-2000 codec resulting from
attempting to decode invalid code streams. (#264, #265)
Fix wrong return value under some compilers (#260)
Fix CVE-2021-3272 heap buffer overflow in jp2_decode (#259)
jp2_decode in jp2/jp2_dec.c in libjasper in JasPer 2.0.24 has a heap-based buffer over-read when there is an invalid relationship between the number of channels and the number of image components.
Rated as 7.1 high
Committed instructions at r24202. Now for the security advisory...
Site web updated at r1708-r1709
Powered by Trac 1.5.3.dev0
By Edgewall Software
© 1998-2021 Gerard Beekmans.