CVE-2025-54874

OpenJPEG is an open-source JPEG 2000 codec. In OpenJPEG from 2.5.1 through 2.5.3, a call to opjjp2readheader may lead to OOB heap memory write when the data stream pstream is too short and p_image is not initialized.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/54xxx/CVE-2025-54874.json",
    "cna_assigner": "GitHub_M",
    "cwe_ids": [
        "CWE-457"
    ]
}

References

Affected packages

Git / github.com/uclouvain/openjpeg

Affected ranges

Type: GIT
Repo: https://github.com/uclouvain/openjpeg
Events: Introduced

14d03e8ed5dcdb8552c8a4c7c9a383b29a6891cb

Fixed

f809b80c67717c152a5ad30bf06774f00da4fd2d

Affected versions

v2.*

v2.5.1

v2.5.2

v2.5.3

Database specific

vanir_signatures

[
    {
        "signature_type": "Line",
        "source": "https://github.com/uclouvain/openjpeg/commit/f809b80c67717c152a5ad30bf06774f00da4fd2d",
        "signature_version": "v1",
        "deprecated": false,
        "id": "CVE-2025-54874-caed9d70",
        "target": {
            "file": "src/lib/openjp2/jp2.c"
        },
        "digest": {
            "line_hashes": [
                "272056726866992156509900551740469083344",
                "238217240773972104591176391809576663911",
                "256099976055268152159627519408704047425",
                "208345000864026141751896735822997387696"
            ],
            "threshold": 0.9
        }
    },
    {
        "signature_type": "Function",
        "source": "https://github.com/uclouvain/openjpeg/commit/f809b80c67717c152a5ad30bf06774f00da4fd2d",
        "signature_version": "v1",
        "deprecated": false,
        "id": "CVE-2025-54874-e27ad67e",
        "target": {
            "file": "src/lib/openjp2/jp2.c",
            "function": "opj_jp2_read_header"
        },
        "digest": {
            "function_hash": "282837610718858633442933438411884669742",
            "length": 1528.0
        }
    }
]