The Openjpeg Project Openjpeg2 vulnerabilities
67 known vulnerabilities affecting the_openjpeg_project/openjpeg2.
Total CVEs
67
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL4HIGH27MEDIUM36
Vulnerabilities
Page 2 of 4
CVE-2017-14040P3HIGHCVSS 8.8≥ 0, < 2.3.0-12017-08-30
CVE-2017-14040 [HIGH] CVE-2017-14040: An invalid write access was discovered in bin/jp2/convert
An invalid write access was discovered in bin/jp2/convert.c in OpenJPEG 2.2.0, triggering a crash in the tgatoimage function. The vulnerability may lead to remote denial of service or possibly unspecified other impact.
osv
CVE-2016-5152P3HIGHCVSS 8.8≥ 0, < 2.1.2-1.22016-09-11
CVE-2016-5152 [HIGH] CVE-2016-5152: Integer overflow in the opj_tcd_get_decoded_tile_size function in tcd
Integer overflow in the opj_tcd_get_decoded_tile_size function in tcd.c in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted JPEG 2000 data.
osv
CVE-2016-8332P3HIGHCVSS 7.8≥ 0, < 2.1.2-12016-10-28
CVE-2016-8332 [HIGH] CVE-2016-8332: A buffer overflow in OpenJPEG 2
A buffer overflow in OpenJPEG 2.1.1 causes arbitrary code execution when parsing a crafted image. An exploitable code execution vulnerability exists in the jpeg2000 image file format parser as implemented in the OpenJpeg library. A specially crafted jpeg2000 file can cause an out of bound heap write resulting in heap corruption leading to arbitrary code execution. For a successful attack, the target user needs to open a maliciou
osv
CVE-2015-6581P3HIGHCVSS 7.5≥ 0, < 2.1.1-12015-09-03
CVE-2015-6581 [HIGH] CVE-2015-6581: Double free vulnerability in the opj_j2k_copy_default_tcp_and_create_tcd function in j2k
Double free vulnerability in the opj_j2k_copy_default_tcp_and_create_tcd function in j2k.c in OpenJPEG before r3002, as used in PDFium in Google Chrome before 45.0.2454.85, allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) by triggering a memory-allocation failure.
osv
CVE-2020-27823P3HIGHCVSS 7.8≥ 0, < 2.4.0-12021-05-13
CVE-2020-27823 [HIGH] CVE-2020-27823: A flaw was found in OpenJPEG’s encoder
A flaw was found in OpenJPEG’s encoder. This flaw allows an attacker to pass specially crafted x,y offset input to OpenJPEG to use during encoding. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
osv
CVE-2016-5158P3HIGHCVSS 8.8≥ 0, < 2.1.2-12016-09-11
CVE-2016-5158 [HIGH] CVE-2016-5158: Multiple integer overflows in the opj_tcd_init_tile function in tcd
Multiple integer overflows in the opj_tcd_init_tile function in tcd.c in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allow remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted JPEG 2000 data.
osv
CVE-2020-27814P3HIGHCVSS 7.8≥ 0, < 2.4.0-12021-01-26
CVE-2020-27814 [HIGH] CVE-2020-27814: A heap-buffer overflow was found in the way openjpeg2 handled certain PNG format files
A heap-buffer overflow was found in the way openjpeg2 handled certain PNG format files. An attacker could use this flaw to cause an application crash or in some cases execute arbitrary code with the permission of the user running such an application.
osv
CVE-2021-3575P3HIGHCVSS 7.8≥ 0, < 2.4.0-3+deb11u1≥ 0, < 2.5.0-2+deb12u1+1 more2022-03-04
CVE-2021-3575 [HIGH] CVE-2021-3575: A heap-based buffer overflow was found in openjpeg in color
A heap-based buffer overflow was found in openjpeg in color.c:379:42 in sycc420_to_rgb when decompressing a crafted .j2k file. An attacker could use this to execute arbitrary code with the permissions of the application compiled against openjpeg.
osv
CVE-2016-9573P3HIGHCVSS 8.1≥ 0, < 2.1.2-1.12018-08-01
CVE-2016-9573 [HIGH] CVE-2016-9573: An out-of-bounds read vulnerability was found in OpenJPEG 2
An out-of-bounds read vulnerability was found in OpenJPEG 2.1.2, in the j2k_to_image tool. Converting a specially crafted JPEG2000 file to another format could cause the application to crash or, potentially, disclose some data from the heap.
osv
CVE-2016-9112P3HIGHCVSS 7.5≥ 0, < 2.1.2-1.22016-10-29
CVE-2016-9112 [HIGH] CVE-2016-9112: Floating Point Exception (aka FPE or divide by zero) in opj_pi_next_cprl function in openjp2/pi
Floating Point Exception (aka FPE or divide by zero) in opj_pi_next_cprl function in openjp2/pi.c:523 in OpenJPEG 2.1.2.
osv
CVE-2016-1628P4MEDIUMCVSS 6.3≥ 0, < 2.1.2-1.22016-02-21
CVE-2016-1628 [MEDIUM] CVE-2016-1628: pi
pi.c in OpenJPEG, as used in PDFium in Google Chrome before 48.0.2564.109, does not validate a certain precision value, which allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read) via a crafted JPEG 2000 image in a PDF document, related to the opj_pi_next_rpcl, opj_pi_next_pcrl, and opj_pi_next_cprl functions.
osv
CVE-2016-7445P4HIGHCVSS 7.5≥ 0, < 2.1.2-12016-10-03
CVE-2016-7445 [HIGH] CVE-2016-7445: convert
convert.c in OpenJPEG before 2.1.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors involving the variable s.
osv
CVE-2020-15389P4MEDIUMCVSS 6.5≥ 0, < 2.4.0-12020-06-29
CVE-2020-15389 [MEDIUM] CVE-2020-15389: jp2/opj_decompress
jp2/opj_decompress.c in OpenJPEG through 2.3.1 has a use-after-free that can be triggered if there is a mix of valid and invalid files in a directory operated on by the decompressor. Triggering a double-free may also be possible. This is related to calling opj_image_destroy twice.
osv
CVE-2016-5139P4HIGHCVSS 7.6≥ 0, < 2.1.2-12016-08-07
CVE-2016-5139 [HIGH] CVE-2016-5139: Multiple integer overflows in the opj_tcd_init_tile function in tcd
Multiple integer overflows in the opj_tcd_init_tile function in tcd.c in OpenJPEG, as used in PDFium in Google Chrome before 52.0.2743.116, allow remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted JPEG 2000 data.
osv
CVE-2018-14423P4HIGHCVSS 7.5≥ 0, < 2.3.0-22018-07-19
CVE-2018-14423 [HIGH] CVE-2018-14423: Division-by-zero vulnerabilities in the functions pi_next_pcrl, pi_next_cprl, and pi_next_rpcl in lib/openjp3d/pi
Division-by-zero vulnerabilities in the functions pi_next_pcrl, pi_next_cprl, and pi_next_rpcl in lib/openjp3d/pi.c in OpenJPEG through 2.3.0 allow remote attackers to cause a denial of service (application crash).
osv
CVE-2025-50952P4MEDIUMCVSS 6.5≥ 0, < 2.4.0-3+deb11u2≥ 0, < 2.5.0-2+deb12u2+1 more2025-08-07
CVE-2025-50952 [MEDIUM] CVE-2025-50952: openjpeg v 2
openjpeg v 2.5.0 was discovered to contain a NULL pointer dereference via the component /openjp2/dwt.c.
osv
CVE-2016-9118P4MEDIUMCVSS 5.3≥ 0, < 2.1.2-1.22016-10-30
CVE-2016-9118 [MEDIUM] CVE-2016-9118: Heap Buffer Overflow (WRITE of size 4) in function pnmtoimage of convert
Heap Buffer Overflow (WRITE of size 4) in function pnmtoimage of convert.c:1719 in OpenJPEG 2.1.2.
osv
CVE-2016-1923P4MEDIUMCVSS 6.5≥ 0, < 2.1.1-12016-01-27
CVE-2016-1923 [MEDIUM] CVE-2016-1923: Heap-based buffer overflow in the opj_j2k_update_image_data function in OpenJpeg 2016
Heap-based buffer overflow in the opj_j2k_update_image_data function in OpenJpeg 2016.1.18 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted JPEG 2000 image.
osv
CVE-2016-9572P4MEDIUMCVSS 6.5≥ 0, < 2.1.2-1.12018-08-01
CVE-2016-9572 [MEDIUM] CVE-2016-9572: A NULL pointer dereference flaw was found in the way openjpeg 2
A NULL pointer dereference flaw was found in the way openjpeg 2.1.2 decoded certain input images. Due to a logic error in the code responsible for decoding the input image, an application using openjpeg to process image data could crash when processing a crafted image.
osv
CVE-2016-1924P4MEDIUMCVSS 6.5≥ 0, < 2.1.1-12016-01-27
CVE-2016-1924 [MEDIUM] CVE-2016-1924: The opj_tgt_reset function in OpenJpeg 2016
The opj_tgt_reset function in OpenJpeg 2016.1.18 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted JPEG 2000 image.
osv