{"id":"CVE-2015-8219","details":"The init_tile function in libavcodec/jpeg2000dec.c in FFmpeg before 2.8.2 does not enforce minimum-value and maximum-value constraints on tile coordinates, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted JPEG 2000 data.","modified":"2026-04-16T01:44:21.103068713Z","published":"2015-11-17T01:59:04Z","withdrawn":"2026-01-27T04:15:11.971275Z","related":["openSUSE-SU-2024:10243-1","openSUSE-SU-2024:10754-1"],"references":[{"type":"WEB","url":"http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=43492ff3ab68a343c1264801baa1d5a02de10167"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-updates/2015-11/msg00146.html"}],"schema_version":"1.7.3"}