{"id":"OSV-2025-219","summary":"Heap-buffer-overflow in opj_j2k_read_tile_header","details":"OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=403673832\n\n```\nCrash type: Heap-buffer-overflow WRITE 8\nCrash state:\nopj_j2k_read_tile_header\nopj_j2k_decode_tiles\nopj_j2k_decode\n```\n","modified":"2026-02-11T14:21:44.325194Z","published":"2025-03-18T00:18:30.566980Z","references":[{"type":"REPORT","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=403673832"}],"affected":[{"package":{"name":"openjpeg","ecosystem":"OSS-Fuzz","purl":"pkg:generic/openjpeg"},"ranges":[{"type":"GIT","repo":"https://github.com/uclouvain/openjpeg","events":[{"introduced":"954c6e3cb9d79aaa08c6666373d2bfa04f89ead1"},{"fixed":"d33cbecc148d3affcdf403211fddc2cc5d442379"}]}],"versions":["v2.5.3","v2.5.4"],"ecosystem_specific":{"severity":"HIGH"},"database_specific":{"introduced_range":"5005a350a78d1918e98e970457a8316a23c50e19:d153c61e6fad0e1365125433e2db48661ec41ab5","fixed_range":"8ac526236416b9c28f73d4684cf9e8a66f1d134e:d33cbecc148d3affcdf403211fddc2cc5d442379","source":"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/openjpeg/OSV-2025-219.yaml"}}],"schema_version":"1.7.3"}