VDB
WID-SEC-W-2023-0664
WID-SEC-W-2023-0664
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Die OpenJPEG Bibliothek ist ein in C geschriebener Open Source JPEG 2000 Codec.
Risk Scores
CVSS v4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat Enterprise Linux | ||
| SUSE Linux | ||
| Open Source OpenJPEG <= 2.3.1 | ||
| Debian Linux | ||
| Amazon Linux 2 | ||
| Gentoo Linux | ||
| Ubuntu Linux |
Timeline
- Jun 29, 2020 CVE Published
- Mar 15, 2023 CVE Updated
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2020/wid-sec-w-2023-0664.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0664 advisory
- https://ubuntu.com/security/notices/USN-5952-1 url
- https://github.com/uclouvain/openjpeg/issues/1261 url
- https://lists.debian.org/debian-lts-announce/2020/debian-lts-announce-202007/msg00008.html url
- https://www.debian.org/security/2021/dsa-4882 url
- https://usn.ubuntu.com/4497-1/ url
- https://ubuntu.com/security/notices/USN-4685-1 url
- https://security.gentoo.org/glsa/202101-29 url
- https://access.redhat.com/errata/RHSA-2021:4251 url
- https://alas.aws.amazon.com/AL2/ALAS-2022-1741.html url
- https://lists.suse.com/pipermail/sle-security-updates/2022-April/010666.html url
- https://lists.suse.com/pipermail/sle-security-updates/2022-April/010745.html url
- https://lists.suse.com/pipermail/sle-security-updates/2022-April/010791.html url