| 제목 | uclouvain openjpeg 2.5.4 Integer Overflow |
|---|
| 설명 | An integer overflow vulnerability exists in opj_pi_initialise_encode() (src/lib/openjp2/pi.c). The include_size variable is calculated through a chain of 32-bit multiplications without overflow checking. When encoding parameters satisfy:
numlayers × l_max_res × numcomps × l_max_prec > UINT32_MAX
the result is truncated, causing a smaller-than-required heap buffer allocation. Subsequent accesses to the include array exceed the allocated bounds. |
|---|
| 원천 | ⚠️ https://github.com/uclouvain/openjpeg/issues/1619 |
|---|
| 사용자 | Kery Qi (UID 94424) |
|---|
| 제출 | 2026. 04. 05. PM 03:44 (12 날 ago) |
|---|
| 모더레이션 | 2026. 04. 13. AM 10:41 (8 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 357114 [uclouvain openjpeg 까지 2.5.4 src/lib/openjp2/pi.c opj_pi_initialise_encode 메모리 손상] |
|---|
| 포인트들 | 20 |
|---|