{"id":"CVE-2016-3182","details":"The color_esycc_to_rgb function in bin/common/color.c in OpenJPEG before 2.1.1 allows attackers to cause a denial of service (memory corruption) via a crafted jpeg 2000 file.","modified":"2026-05-08T13:52:58.782377Z","published":"2020-02-20T01:15:10.687Z","references":[{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2016/03/16/16"},{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2016/09/27/1"},{"type":"ADVISORY","url":"https://github.com/uclouvain/openjpeg/issues/725"},{"type":"FIX","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1317826"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/uclouvain/openjpeg","events":[{"introduced":"0"},{"fixed":"53f25200ed696cf5dc71d5fe12faad2570861b20"}],"database_specific":{"extracted_events":[{"introduced":"0"},{"fixed":"2.1.1"}],"cpe":"cpe:2.3:a:uclouvain:openjpeg:*:*:*:*:*:*:*:*","source":"CPE_FIELD"}}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-3182.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}