openjpeg: Multiple vulnerabilities (CVE-2020-6851, CVE-2020-8112)| ID: oval:org.secpod.oval:def:1801682 | Date: (C)2020-03-20 (M)2023-11-10 |
| Class: PATCH | Family: unix |
OpenJPEG through 2.3.1 has a heap-based buffer overflow in opj_t1_clbl_decode_processor in libopenjp2.so.opj_t1_clbl_decode_processor in openjp2/t1.c in OpenJPEG 2.3.1 through 2020-01-28 has a heap-based buffer overflow in the qmfbid==1 case, a different issue than CVE-2020-6851.
| Platform: |
| Alpine Linux 3.10 |
| Alpine Linux 3.11 |
| Alpine Linux 3.8 |
| Alpine Linux 3.9 |
