Excessive Iteration

CVE-2019-12973

Medium

4.3/10

Summary

In OpenJPEG 2.3.1, there is excessive iteration in the opj_t1_encode_cblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file. This issue is similar to CVE-2018-6616.

Access Complexity: MEDIUM
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: NONE
Confidentiality Impact: NONE
Availability Impact: PARTIAL

CWE-834 - Excessive Iteration

The software performs an iteration or loop without sufficiently limiting the number of times that the loop is executed.

References

Advisory Timeline

Published Jun 26, 2019

Excessive Iteration

CVE-2019-12973

Summary

CWE-834 - Excessive Iteration

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS