SecuritySpace - CVE-2015-8363

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2015-8363

Description: The jpeg2000_read_main_headers function in libavcodec/jpeg2000dec.c in FFmpeg before 2.6.5, 2.7.x before 2.7.3, and 2.8.x through 2.8.2 does not enforce uniqueness of the SIZ marker in a JPEG 2000 image, which allows remote attackers to cause a denial of service (out-of-bounds heap-memory access) or possibly have unspecified other impact via a crafted image with two or more of these markers.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2015-8363
https://lists.debian.org/debian-lts-announce/2018/12/msg00009.html
SuSE Security Announcement: openSUSE-SU-2015:2370 (Google Search)
http://lists.opensuse.org/opensuse-updates/2015-12/msg00118.html

CVE ID:	CVE-2015-8363
Description:	The jpeg2000_read_main_headers function in libavcodec/jpeg2000dec.c in FFmpeg before 2.6.5, 2.7.x before 2.7.3, and 2.8.x through 2.8.2 does not enforce uniqueness of the SIZ marker in a JPEG 2000 image, which allows remote attackers to cause a denial of service (out-of-bounds heap-memory access) or possibly have unspecified other impact via a crafted image with two or more of these markers.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2015-8363 https://lists.debian.org/debian-lts-announce/2018/12/msg00009.html SuSE Security Announcement: openSUSE-SU-2015:2370 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-12/msg00118.html