OSV-2017-22

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/openjpeg/OSV-2017-22.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2017-22
Published
2021-01-13T00:01:24.955187Z
Modified
2022-04-13T03:04:39.646551Z
Summary
Heap-buffer-overflow in opj_tcd_mct_decode
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3331

Crash type: Heap-buffer-overflow READ 4
Crash state:
opj_tcd_mct_decode
opj_tcd_decode_tile
opj_j2k_decode_tile
References

Affected packages

OSS-Fuzz / openjpeg

Package

Name
openjpeg
Purl
pkg:generic/openjpeg

Affected ranges

Type
GIT
Repo
https://github.com/uclouvain/openjpeg
Events
Introduced
cc893a4ebfaf8c42cf1221ac82c83df91e77340b
Fixed
28094e1ebfa420f9a0bdc7a11b8d4ee5f154db35

Ecosystem specific 

{
    "severity": "MEDIUM"
}