Home
Description
Buffer Overflow vulnerability in OpenHTJ2K v.0.18.4 and before allows an attacker to execute arbitrary code via the openhtj2k_decoder_impl::invoke, invoke_line_based, invoke_line_based_stream, and invoke_line_based_predecoded function in source/core/interface/decoder.cpp
References
github.com/osamu620/OpenHTJ2K/blob/main/CHANGELOG
github.com/osamu620/OpenHTJ2K/pull/320
github.com/osamu620/OpenHTJ2K/releases/tag/v0.18.5