[3.6] openjpeg: memory allocation failure in opj_aligned_alloc_n (opj_malloc.c) (CVE-2017-12982)ID: oval:org.secpod.oval:def:1800196 | Date: (C)2018-03-28 (M)2022-01-03 |
Class: PATCH | Family: unix |
The bmp_read_info_header function in bin/jp2/convertbmp.c in OpenJPEG 2.2.0 does not reject headers with a zero biBitCount, which allows remote attackers to cause a denial of service in the opj_image_create function in lib/openjp2/image.c, related to the opj_aligned_alloc_n function in opj_malloc.c.
Platform: |
Alpine Linux 3.6 |