CVE-2020-27842: Out-of-bounds Read

January 5, 2021 (updated July 20, 2021)

There’s a flaw in openjpeg’s t2 encoder An attacker who is able to provide crafted input to be processed by openjpeg could cause a null pointer dereference. The highest impact of this flaw is to application availability.

References

bugzilla.redhat.com/show_bug.cgi?id=1907513
nvd.nist.gov/vuln/detail/CVE-2020-27842

Detect and mitigate CVE-2020-27842 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →