Untriaged
Permalink
CVE-2023-39329
6.5 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): LOW
- Privileges required (PR): NONE
- User interaction (UI): REQUIRED
- Scope (S): UNCHANGED
- Confidentiality impact (C): NONE
- Integrity impact (I): NONE
- Availability impact (A): HIGH
Openjpeg: resource exhaustion will occur in the opj_t1_decode_cblks function in the tcd.c
A flaw was found in OpenJPEG. A resource exhaustion can occur in the opj_t1_decode_cblks function in tcd.c through a crafted image file, causing a denial of service.
References
- https://access.redhat.com/security/cve/CVE-2023-39329 x_refsource_REDHAT vdb-entry
- RHBZ#2295816 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39329 x_refsource_REDHAT vdb-entry
- RHBZ#2295816 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39329 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2295816 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39329 x_refsource_REDHAT vdb-entry
- RHBZ#2295816 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39329 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2295816 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39329 x_refsource_REDHAT vdb-entry
- RHBZ#2295816 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39329 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2295816 issue-tracking x_refsource_REDHAT x_transferred
- RHBZ#2295816 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39329 x_refsource_REDHAT vdb-entry
- https://access.redhat.com/security/cve/CVE-2023-39329 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2295816 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39329 x_refsource_REDHAT vdb-entry
- RHBZ#2295816 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39329 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2295816 issue-tracking x_refsource_REDHAT x_transferred
- RHBZ#2295816 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39329 x_refsource_REDHAT vdb-entry
- https://access.redhat.com/security/cve/CVE-2023-39329 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2295816 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39329 x_refsource_REDHAT vdb-entry
- RHBZ#2295816 issue-tracking x_refsource_REDHAT
- RHBZ#2295816 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39329 x_refsource_REDHAT vdb-entry x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39329 x_refsource_REDHAT vdb-entry
- RHBZ#2295816 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39329 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2295816 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39329 x_refsource_REDHAT vdb-entry
- RHBZ#2295816 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39329 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2295816 issue-tracking x_refsource_REDHAT x_transferred
Affected products
openjpeg
- ==2.5.0
openjpeg2
gimp:flatpak/openjpeg2
inkscape:flatpak/openjpeg2
libreoffice:flatpak/openjpeg2
Matching in nixpkgs
pkgs.openjpeg
Open-source JPEG 2000 codec written in C language
-
nixos-unstable -
- nixpkgs-unstable 2.5.2
pkgs.python312Packages.pylibjpeg-openjpeg
J2K and JP2 plugin for pylibjpeg
-
nixos-unstable -
- nixpkgs-unstable 2.5.0
pkgs.python313Packages.pylibjpeg-openjpeg
J2K and JP2 plugin for pylibjpeg
-
nixos-unstable -
- nixpkgs-unstable 2.5.0
Package maintainers
-
@codyopel Cody Opel <codyopel@gmail.com>
-
@bcdarwin Ben Darwin <bcdarwin@gmail.com>