Browse all 4 CVE security advisories affecting The OpenJPEG Project. AI-powered Chinese analysis, POCs, and references for each vulnerability.
The OpenJPEG Project develops an open-source codec for JPEG 2000 image compression, widely used in medical imaging and digital preservation. Historically, vulnerabilities have included remote code execution, memory corruption, and denial-of-service flaws, often stemming from improper input validation in parsing functions. The project maintains a moderate security posture with four CVEs recorded, addressing issues like buffer overflows and integer overflows. While no major incidents have been widely documented, the project's focus on multimedia processing makes it a potential target for exploitation through malformed image files, requiring careful handling of untrusted inputs in applications utilizing the library.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2016-9572 | OpenJPEG 安全漏洞 — openjpegCWE-476 | 6.5 | - | 2018-08-01 |
| CVE-2016-9580 | OpenJPEG 数字错误漏洞 — openjpeg2CWE-190 | 8.8 | - | 2018-08-01 |
| CVE-2016-9581 | OpenJPEG 缓冲区错误漏洞 — openjpeg2CWE-835 | 8.1 | - | 2018-08-01 |
| CVE-2016-9573 | OpenJPEG 缓冲区错误漏洞 — openjpegCWE-125 | 8.1 | - | 2018-08-01 |
This page lists every published CVE security advisory associated with The OpenJPEG Project. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.