CVE - CVE-2012-3535

About CVE

Terminology

Documents

FAQs

CVE List

CVE-ID Syntax Change

About CVE Identifiers

Search CVE

Search NVD

Updates & RSS Feeds

Request a CVE-ID

CVE In Use

CVE-Compatible Products

NVD for CVE Fix Information

CVSS for Scoring CVE-IDs

CVE Numbering Authorities (CNAs)

News & Events

Calendar

Free Newsletter

Community

CVE Editorial Board

Sponsor

Contact Us

Search the Site

Site Map

CVE List

Search Master Copy of CVE

Download CVE

View CVE

CVE-ID Syntax Change

CVE-ID Syntax Compliance

CVE-ID Syntax Guidance

CVE-ID Syntax Test Data

About CVE Identifiers

Data Sources/Product Coverage

Editorial Policies

CVE Editor's Commentary

Reference Key/Maps

Search Tips

Updates & RSS Feeds

Request a CVE Identifier

Items of Interest

Terminology

Common Vulnerability Scoring System (CVSS)

Common Vulnerability Reporting Framework (CVRF)

National Vulnerability Database (NVD)

CVE-ID
CVE-2012-3535	Learn more at National Vulnerability Database (NVD) • Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings
Description
Heap-based buffer overflow in OpenJPEG 1.5.0 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted JPEG2000 file.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MLIST:[oss-security] 20120827 CVE Request: Heap-based buffer overflow in openjpeg URL:www.openwall.com/lists/oss-security/2012/08/27/2 MLIST:[oss-security] 20120827 Re: CVE Request: Heap-based buffer overflow in openjpeg URL:www.openwall.com/lists/oss-security/2012/08/27/3 MISC:code.google.com/p/openjpeg/issues/detail?id=170 MISC:https://bugzilla.redhat.com/show_bug.cgi?id=842918 FEDORA:FEDORA-2012-14664 URL:lists.fedoraproject.org/pipermail/package-announce/2012-October/090021.html FEDORA:FEDORA-2012-14707 URL:lists.fedoraproject.org/pipermail/package-announce/2012-October/090579.html MANDRIVA:MDVSA-2012:157 URL:www.mandriva.com/security/advisories?name=MDVSA-2012:157 REDHAT:RHSA-2012:1283 URL:rhn.redhat.com/errata/RHSA-2012-1283.html BID:55214 URL:www.securityfocus.com/bid/55214 OSVDB:84978 URL:osvdb.org/84978 SECUNIA:50360 URL:secunia.com/advisories/50360 SECUNIA:50681 URL:secunia.com/advisories/50681 XF:openjpeg-files-bo(77994) URL:xforce.iss.net/xforce/xfdb/77994
Date Entry Created
20120614	Disclaimer: The entry creation date may reflect when the CVE-ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20120614)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE list, which standardizes names for security problems.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org

Back to top

Use of the Common Vulnerabilities and Exposures List and the associated references from this Web site are subject to the Terms of Use. For more information, please email cve@mitre.org.

CVE is sponsored by US-CERT in the office of Cybersecurity and Communications at the U.S. Department of Homeland Security. Copyright © 1999–2015, The MITRE Corporation. CVE and the CVE logo are registered trademarks and CVE-Compatible is a trademark of The MITRE Corporation.

Site Map
Privacy policy
Terms of use
Contact us

Related searches:
security search syntax secunia request

gipoco.com is neither affiliated with the authors of this page or responsible
for its contents. This is a safe-cache copy of the original web site.

gipoco.com is neither affiliated with the authors of this page nor responsible for its contents. This is a safe-cache copy of the original web site.