Vulnerability Details : CVE-2016-4796
Heap-based buffer overflow in the color_cmyk_to_rgb in common/color.c in OpenJPEG before 2.1.1 allows remote attackers to cause a denial of service (crash) via a crafted .j2k file.
Vulnerability category: OverflowDenial of service
Products affected by CVE-2016-4796
- cpe:2.3:o:fedoraproject:fedora:24:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:23:*:*:*:*:*:*:*
- cpe:2.3:a:uclouvain:openjpeg:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2016-4796
1.93%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 88 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2016-4796
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.3
|
MEDIUM | AV:N/AC:M/Au:N/C:N/I:N/A:P |
8.6
|
2.9
|
NIST | |
5.5
|
MEDIUM | CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
1.8
|
3.6
|
NIST |
CWE ids for CVE-2016-4796
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
References for CVE-2016-4796
-
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DFRD35RIPRCGZA5DKAKHZ62LMP2A5UT7/
[SECURITY] Fedora 23 Update: openjpeg2-2.1.1-1.fc23 - package-announce - Fedora Mailing-ListsPatch;Third Party Advisory
-
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BJM23YERMEC6LCTWBUH7LZURGSLZDFDH/
[SECURITY] Fedora 24 Update: mingw-openjpeg2-2.1.1-1.fc24 - package-announce - Fedora Mailing-ListsPatch;Third Party Advisory
-
https://www.oracle.com/security-alerts/cpujul2020.html
Oracle Critical Patch Update Advisory - July 2020
-
https://bugzilla.redhat.com/show_bug.cgi?id=1335482
1335482 – (CVE-2016-4796) CVE-2016-4796 openjpeg: Heap buffer overflow in function color_cmyk_to_rgb in color.cIssue Tracking;Patch
-
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5FFMOZOF2EI6N2CR23EQ5EATWLQKBMHW/
[SECURITY] Fedora 23 Update: mingw-openjpeg2-2.1.1-1.fc23 - package-announce - Fedora Mailing-ListsPatch;Third Party Advisory
-
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HPMDEUIMHTLKMHELDL4F4HZ7X4Y34JEB/
[SECURITY] Fedora 24 Update: openjpeg2-2.1.1-1.fc24 - package-announce - Fedora Mailing-ListsPatch;Third Party Advisory
-
https://github.com/uclouvain/openjpeg/commit/162f6199c0cd3ec1c6c6dc65e41b2faab92b2d91
Fix Heap Buffer Overflow in function color_cmyk_to_rgb · uclouvain/openjpeg@162f619 · GitHubIssue Tracking;Patch;Third Party Advisory
-
https://github.com/uclouvain/openjpeg/issues/774
CVE-2016-4796 Heap Buffer Overflow in function color_cmyk_to_rgb of color.c · Issue #774 · uclouvain/openjpeg · GitHubIssue Tracking;Patch
-
http://www.openwall.com/lists/oss-security/2016/05/13/2
oss-security - Re: CVE Request - OpenJPEG: Security FixesMailing List;Patch;Third Party Advisory
Jump to