suse · CVE-2021-29338

Quick triage

Priority: low Published: 2021-05-30 14:49:25 UTC Updated: 2026-03-05 05:22:15 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2021-29338 severity low: SUSE including 29 source package names (0.3.2-1.2:libopenjp2-7-2.3.0-150000.3.5.1, 0.3.32-3.4:libopenjp2-7-2.3.0-150000.3.5.1, …), 199 product×package rows across 67 product lines (Container containers/lmcache-vllm-openai, Container containers/open-webui, … (67 product lines)): Fixed 199.

Description:

Integer Overflow in OpenJPEG v2.4.0 allows remote attackers to crash the application, causing a Denial of Service (DoS). This occurs when the attacker uses the command line option "-ImgDir" on a directory that contains 1048576 files.

cvelogic Threat Intelligence