CVE-2020-27844

Summary

A flaw was found in openjpeg's src/lib/openjp2/t2.c in versions prior to 2.4.0. This flaw allows an attacker to provide crafted input to openjpeg during conversion and encoding, causing an out-of-bounds write. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.

Affected Software

VendorProductVersion RangeStatus
n/aopenjpegopenjpeg 2.4.0affected

Weaknesses

  • CWE-20: CWE-20->CWE-122->CWE-787

ADP Enrichment

CVE Program Container

Additional References

References