Risk Scores
CVSS v4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mageia:5 | openjpeg2 | 0, 0 |
| Mageia:5 | ghostscript | 0, 0 |
Timeline
- Nov 3, 2016 CVE Published
- Apr 16, 2026 CVE Updated
- May 1, 2026 Distribution Patch
- May 1, 2026 Security Advisory
References
- https://advisories.mageia.org/MGASA-2016-0362.html advisory
- https://bugs.mageia.org/show_bug.cgi?id=17536 report
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/HPMDEUIMHTLKMHELDL4F4HZ7X4Y34JEB/ url
- https://lists.opensuse.org/opensuse-updates/2016-09/msg00109.html url
- http://www.talosintelligence.com/reports/TALOS-2016-0193/ url
- http://www.openjpeg.org/2016/09/28/OpenJPEG-2.1.2-released url
- https://github.com/uclouvain/openjpeg/blob/master/CHANGELOG.md exploit
- https://www.debian.org/security/2016/dsa-3665 advisory
- https://github.com/uclouvain/openjpeg/blob/openjpeg-2.1/CHANGELOG.md exploit