CVE-2012-3535
CVE-2012-3535
Heap-based buffer overflow in OpenJPEG 1.5.0 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted JPEG2000 file.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://code.google.com/p/openjpeg/issues/detail?id=170http://lists.fedoraproject.org/pipermail/package-announce/2012-October/090021.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2012-October/090579.htmlhttp://osvdb.org/84978http://rhn.redhat.com/errata/RHSA-2012-1283.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=842918http://secunia.com/advisories/50360http://secunia.com/advisories/50681https://exchange.xforce.ibmcloud.com/vulnerabilities/77994http://www.mandriva.com/security/advisories?name=MDVSA-2012:157http://www.openwall.com/lists/oss-security/2012/08/27/2http://www.openwall.com/lists/oss-security/2012/08/27/3