Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The bmp_read_info_header function in bin/jp2/convertbmp.c in OpenJPEG 2.2.0 does not reject headers with a zero biBitCount, which allows remote attackers to cause a denial of service (memory allocation failure) in the opj_image_create function in lib/openjp2/image.c, related to the opj_aligned_alloc_n function in opj_malloc.c.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OpenJPEG 安全漏洞
Vulnerability Description
OpenJPEG是一款基于C语言的开源JPEG 2000编码解码器。 OpenJPEG 2.2.0版本中的bin/jp2/convertbmp.c的‘bmp_read_info_header’函数存在安全漏洞,该漏洞源于程序接收了biBitCount为零的包头。远程攻击者可利用该漏洞造成拒绝服务(内存分配失败)。
CVSS Information
N/A
Vulnerability Type
N/A