CVE-2018-21010

Description

OpenJPEG before 2.3.1 has a heap buffer overflow in color_apply_icc_profile in bin/common/color.c.

Affected packages (3)

• Alpine/openjpegfrom 0, < 2.3.0-r3
• Debian/openjpeg2from 0, < 2.3.1-1
• Debian/openjpeg2from 0, < 2.1.0-2+deb8u8

CVSS scores

References (2)

• ADVISORYhttps://security.alpinelinux.org/vuln/CVE-2018-21010
• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2018-21010