VDB

DEBIAN-CVE-2020-27842

DEBIAN-CVE-2020-27842 PUBLISHED CVSS 5.5 MEDIUM

There's a flaw in openjpeg's t2 encoder in versions prior to 2.4.0. An attacker who is able to provide crafted input to be processed by openjpeg could cause a null pointer dereference. The highest impact of this flaw is to application availability.

Risk Scores

CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
Debian:12openjpeg20, 0, 0
Debian:11openjpeg20, 0, 0
Debian:13openjpeg20, 0, 0
Debian:14openjpeg20, 0, 0

Timeline

  • Jan 5, 2021 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›