CVE-2013-6054Heap-based Buffer Overflow in Openjpeg

CWE-122Heap-based Buffer OverflowCWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer7 documents6 sources
Severity
7.5HIGHNVD
EPSS
0.8%
top 26.56%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Uclouvain Openjpeg
Timeline
PublishedDec 12
Latest updateMay 13

Description

Heap-based buffer overflow in OpenJPEG 1.3 has unspecified impact and remote vectors, a different vulnerability than CVE-2013-6045.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

Ubuntuuclouvain/openjpeg< 1.3+dfsg-4.7ubuntu1

🔴Vulnerability Details

3
GHSA
GHSA-qj5m-cr8m-jr8v: Heap-based buffer overflow in OpenJPEG 12022-05-13
OSV
CVE-2013-6054: Heap-based buffer overflow in OpenJPEG 12013-12-12
CVEList
CVE-2013-6054: Heap-based buffer overflow in OpenJPEG 12013-12-12

📋Vendor Advisories

1
Red Hat
openjpeg: heap-based buffer overflows in version 1.32013-12-04

💬Community

2
Bugzilla
CVE-2013-6054 CVE-2013-1447 CVE-2013-6045 CVE-2013-6052 openjpeg: various flaws [epel-5]2013-12-05
Bugzilla
CVE-2013-6054 openjpeg: heap-based buffer overflows in version 1.32013-12-02
CVE-2013-6054 — Heap-based Buffer Overflow in Openjpeg | cvebase