USN-4685-1: OpenJPEG vulnerabilities
Published Jan 7, 2021
·Updated
It was discovered that OpenJPEG incorrectly handled certain image data. An attacker could use this issue to cause OpenJPEG to crash, leading to a denial of service, or possibly execute arbitrary code.
Affected Software
1 affected component
OpenJPEG OpenJPEG
Event History
May 10, 2025
Advisory Published
via Ubuntu·03:44 AM
Data Sourced
via Ubuntu·03:44 AM
DescriptionAffected Software
Child vulnerabilities
Contains the following vulnerabilities.
Frequently Asked Questions
1
What is the vulnerability ID for these OpenJPEG vulnerabilities?
The vulnerability IDs for these OpenJPEG vulnerabilities are CVE-2020-27842, CVE-2020-27841, and CVE-2020-27824.
2
What is the severity of CVE-2020-27842?
The severity of CVE-2020-27842 is not provided in the information provided.
3
How do I fix the OpenJPEG vulnerabilities?
To fix the OpenJPEG vulnerabilities, you need to update the affected software packages to version 2.3.1-1ubuntu4.20.10.1 (for Ubuntu 20.10) or version 2.3.1-1ubuntu4.20.04.1 (for Ubuntu 20.04).
4
Where can I find more information about CVE-2020-27842?
You can find more information about CVE-2020-27842 at the following URL: https://ubuntu.com/security/CVE-2020-27842