Wind River Support Network

HomeDefectsLIN1021-273
Fixed

LIN1021-273 : Security Advisory - openjpeg - CVE-2021-29338

Created: May 24, 2021    Updated: Mar 10, 2022
Resolved Date: Mar 10, 2022
Found In Version: 10.21.20.1
Fix Version: 10.21.20.10
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace

Description

Integer Overflow in OpenJPEG v2.4.0 allows remote attackers to crash the application, causing a Denial of Service (DoS). This occurs when the attacker uses the command line option "-ImgDir" on a directory that contains 1048576 files.

CREATE(Triage):(User=admin) CVE-2021-29338 (https://nvd.nist.gov/vuln/detail/CVE-2021-29338)

CVEs


Live chat
Online