Untriaged
Permalink
CVE-2023-39327
4.3 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): LOW
- Privileges required (PR): NONE
- User interaction (UI): REQUIRED
- Scope (S): UNCHANGED
- Confidentiality impact (C): NONE
- Integrity impact (I): NONE
- Availability impact (A): LOW
Openjpeg: malicious files can cause the program to enter a large loop
A flaw was found in OpenJPEG. Maliciously constructed pictures can cause the program to enter a large loop and continuously print warning messages on the terminal.
References
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry
- RHBZ#2295812 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry
- RHBZ#2295812 issue-tracking x_refsource_REDHAT
- RHBZ#2295812 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry
- RHBZ#2295812 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2295812 issue-tracking x_refsource_REDHAT x_transferred
- RHBZ#2295812 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2295812 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry
- RHBZ#2295812 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2295812 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry
- RHBZ#2295812 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2295812 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry
- RHBZ#2295812 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2295812 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry
- RHBZ#2295812 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2295812 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry
- RHBZ#2295812 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2295812 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry
- RHBZ#2295812 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2295812 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry
- RHBZ#2295812 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2295812 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry
- RHBZ#2295812 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-39327 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2295812 issue-tracking x_refsource_REDHAT x_transferred
Affected products
openjpeg
- ==2.5.0
openjpeg2
gimp:flatpak/openjpeg2
inkscape:flatpak/openjpeg2
libreoffice:flatpak/openjpeg2
Matching in nixpkgs
pkgs.openjpeg
Open-source JPEG 2000 codec written in C language
-
nixos-unstable -
- nixpkgs-unstable 2.5.2
pkgs.python312Packages.pylibjpeg-openjpeg
J2K and JP2 plugin for pylibjpeg
-
nixos-unstable -
- nixpkgs-unstable 2.5.0
pkgs.python313Packages.pylibjpeg-openjpeg
J2K and JP2 plugin for pylibjpeg
-
nixos-unstable -
- nixpkgs-unstable 2.5.0
Package maintainers
-
@codyopel Cody Opel <codyopel@gmail.com>
-
@bcdarwin Ben Darwin <bcdarwin@gmail.com>