MEDIUM
Uclouvain
CVE published 2017-02-03
CVE-2016-3183
CVE-2016-3183 affects OpenJPEG versions before 2.1.1 and is caused by an out-of-bounds read in sycc422_t_rgb within common/color.c. NVD describes the impact as denial of service, with CWE-125 as the underlying weakness. The affected range in the NVD CPE data ends at 2.1.0, which aligns with the description that versions before 2.1.1 are vulnerable.