{"id":"CVE-2018-7648","details":"An issue was discovered in mj2/opj_mj2_extract.c in OpenJPEG 2.3.0. The output prefix was not checked for length, which could overflow a buffer, when providing a prefix with 50 or more characters on the command line.","modified":"2026-05-17T11:55:00.474672890Z","published":"2018-03-02T16:29:00.213Z","related":["openSUSE-SU-2024:11120-1"],"database_specific":{},"references":[{"type":"REPORT","url":"https://github.com/uclouvain/openjpeg/issues/1088"},{"type":"FIX","url":"https://github.com/uclouvain/openjpeg/commit/cc3824767bde397fedb8a1ae4786a222ba860c8d"}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}