Lucene search
K

28 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : jasper-2.0.14-5.el8 (AXSA:2021-2685:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2685:01 advisory. jasper: Heap-based buffer overflow in cpcreate in jpcenc.c CVE-2020-27828 jasper: Heap-based buffer over-read in jp2decode in jp2dec.c CVE-2021-3272...

7.8CVSS5.9AI score0.01371EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.32 views

Rocky Linux 8 : jasper (RLSA-2021:4235)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:4235 advisory. - There's a flaw in jasper's jpc encoder in versions prior to 2.0.23. Crafted input provided to jasper by an attacker could cause an arbitrary...

7.8CVSS7.1AI score0.01371EPSS
Exploits4References9
Amazon
Amazon
added 2023/04/20 12:0 a.m.49 views

Important: jasper

Issue Overview: A flaw was found in the Jasper tool's jpc encoder. This flaw allows an attacker to craft input provided to Jasper, causing an arbitrary out-of-bounds write. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability. CVE-2020-27828 ...

7.8CVSS6.8AI score0.01371EPSS
Exploits5
CBLMariner
CBLMariner
added 2022/04/09 6:51 a.m.14 views

CVE-2021-3272 affecting package jasper for versions less than 2.0.32-2

CVE-2021-3272 affecting package jasper for versions less than 2.0.32-2. An upgraded version of the package is available that resolves this issue...

5.5CVSS6.4AI score0.01107EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2022/04/01 4:38 p.m.87 views

Security Bulletin: Cloud Pak for Security contains packages that have multiple vulnerabilities

Summary Cloud Pak for Security v1.9.0.0 and earlier may be vulnerable to multiple CVEs through the use of dependency packages. These have been updated in the latest release and vulnerabilities have neen addressed. Please follow the instructions in the Remediation/Fixes section below to update to...

10CVSS10.3AI score0.99988EPSS
Exploits109Affected Software1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.34 views

Mageia: Security Advisory (MGASA-2021-0113)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS6.4AI score0.01197EPSS
Exploits3References5
Oracle linux
Oracle linux
added 2021/11/16 12:0 a.m.43 views

jasper security update

2.0.14-5 - Fix CVE-2021-26927 1933860 - Fix CVE-2021-26926 1922316 - Fix CVE-2021-3272 1922283 - Fix CVE-2020-27828 1905692...

7.8CVSS6.8AI score0.01371EPSS
Exploits4
RedHat Linux
RedHat Linux
added 2021/11/09 6:46 p.m.50 views

Moderate: Red Hat Security Advisory: jasper security update

An update for jasper is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.8CVSS6.9AI score0.01371EPSS
Exploits4References6
OSV
OSV
added 2021/11/09 8:48 a.m.26 views

ALSA-2021:4235 Moderate: jasper security update

JasPer is an implementation of Part 1 of the JPEG 2000 image compression standard. Security Fixes: jasper: Heap-based buffer overflow in cpcreate in jpcenc.c CVE-2020-27828 jasper: Heap-based buffer over-read in jp2decode in jp2dec.c CVE-2021-3272 jasper: Out of bounds read in jp2decode in jp2dec...

7.8CVSS7.3AI score0.01371EPSS
Exploits4References5
AlmaLinux
AlmaLinux
added 2021/11/09 8:48 a.m.35 views

Moderate: jasper security update

JasPer is an implementation of Part 1 of the JPEG 2000 image compression standard. Security Fixes: jasper: Heap-based buffer overflow in cpcreate in jpcenc.c CVE-2020-27828 jasper: Heap-based buffer over-read in jp2decode in jp2dec.c CVE-2021-3272 jasper: Out of bounds read in jp2decode in jp2dec...

7.8CVSS7.2AI score0.01371EPSS
Exploits4References5
OSV
OSV
added 2021/11/09 8:48 a.m.26 views

RLSA-2021:4235 Moderate: jasper security update

JasPer is an implementation of Part 1 of the JPEG 2000 image compression standard. Security Fixes: jasper: Heap-based buffer overflow in cpcreate in jpcenc.c CVE-2020-27828 jasper: Heap-based buffer over-read in jp2decode in jp2dec.c CVE-2021-3272 jasper: Out of bounds read in jp2decode in jp2dec...

7.8CVSS7.3AI score0.01371EPSS
Exploits4References5
Rockylinux
Rockylinux
added 2021/11/09 8:48 a.m.30 views

jasper security update

An update is available for jasper. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list JasPer is an implementation of Part 1 of the JPEG 2000 image compression...

7.8CVSS7.2AI score0.01371EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2021/06/10 12:0 a.m.43 views

SUSE SLES11 Security Update : jasper (SUSE-SU-2021:14627-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:14627-1 advisory. - There's a flaw in jasper's jpc encoder in versions prior to 2.0.23. Crafted input provided to jasper by an attacker could cause an arbitrary...

7.8CVSS7.2AI score0.01371EPSS
Exploits2References7
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2021:14627-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.7AI score0.01371EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2021/03/04 12:0 a.m.45 views

FreeBSD : jasper -- multiple vulnerabilities (3a469cbc-7a66-11eb-bd3f-08002728f74c)

JasPer Releases : - Fix memory-related bugs in the JPEG-2000 codec resulting from attempting to decode invalid code streams. 264, 265 This fix is associated with CVE-2021-26926 and CVE-2021-26927. - Fix wrong return value under some compilers 260 - Fix CVE-2021-3272 heap buffer overflow in...

7.1CVSS6.9AI score0.01197EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2021/02/22 12:0 a.m.37 views

openSUSE Security Update : jasper (openSUSE-2021-303)

This update for jasper fixes the following issues : - bsc1179748 CVE-2020-27828: Fix heap overflow by checking maxrlvls - bsc1181483 CVE-2021-3272: Fix buffer over-read in jp2decode This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc. The descripti...

7.8CVSS6.8AI score0.01371EPSS
Exploits2References4
OSV
OSV
added 2021/02/18 6:52 a.m.8 views

OPENSUSE-SU-2021:0303-1 Security update for jasper

This update for jasper fixes the following issues: - bsc1179748 CVE-2020-27828: Fix heap overflow by checking maxrlvls - bsc1181483 CVE-2021-3272: Fix buffer over-read in jp2decode This update was imported from the SUSE:SLE-15:Update update project...

7.8CVSS6.8AI score0.01371EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2021/02/17 12:0 a.m.38 views

SUSE SLED15 / SLES15 Security Update : jasper (SUSE-SU-2021:0488-1)

This update for jasper fixes the following issues : bsc1179748 CVE-2020-27828: Fix heap overflow by checking maxrlvls bsc1181483 CVE-2021-3272: Fix buffer over-read in jp2decode Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security...

7.8CVSS6.9AI score0.01371EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2021/02/17 12:0 a.m.40 views

SUSE SLES12 Security Update : jasper (SUSE-SU-2021:0489-1)

This update for jasper fixes the following issues : bsc1179748 CVE-2020-27828: Fix heap overflow by checking maxrlvls bsc1181483 CVE-2021-3272: Fix buffer over-read in jp2decode Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security...

7.8CVSS6.9AI score0.01371EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2021/02/08 12:0 a.m.36 views

Fedora 33 : mingw-jasper (2021-8ecb3686ca)

The remote Fedora 33 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2021-8ecb3686ca advisory. - jp2decode in jp2/jp2dec.c in libjasper in JasPer 2.0.24 has a heap-based buffer over-read when there is an invalid relationship between the number of...

5.5CVSS7.1AI score0.01107EPSS
Exploits1References2
Rows per page
Query Builder