{"id":"CVE-2018-20847","details":"An improper computation of p_tx0, p_tx1, p_ty0 and p_ty1 in the function opj_get_encoding_parameters in openjp2/pi.c in OpenJPEG through 2.3.0 can lead to an integer overflow.","modified":"2026-02-22T01:24:44.505028Z","published":"2019-06-26T18:15:10.057Z","related":["ALSA-2021:4251"],"references":[{"type":"WEB","url":"http://www.securityfocus.com/bid/108921"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/108921"},{"type":"ADVISORY","url":"https://github.com/uclouvain/openjpeg/issues/431"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2019/07/msg00010.html"},{"type":"REPORT","url":"https://github.com/uclouvain/openjpeg/issues/431"},{"type":"REPORT","url":"https://lists.debian.org/debian-lts-announce/2019/07/msg00010.html"},{"type":"FIX","url":"https://github.com/uclouvain/openjpeg/commit/5d00b719f4b93b1445e6fb4c766b9a9883c57949"},{"type":"FIX","url":"https://github.com/uclouvain/openjpeg/issues/431"},{"type":"FIX","url":"https://github.com/uclouvain/openjpeg/pull/1168/commits/c58df149900df862806d0e892859b41115875845"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/uclouvain/openjpeg","events":[{"introduced":"0"},{"last_affected":"081de4b15f54cb4482035b7bf5e3fb443e4bc84b"}]}],"versions":["v2.2.0","v2.3.0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-20847.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}