2 matches found
CVE-2025-8836 affecting package jasper for versions less than 2.0.32-5
CVE-2025-8836 affecting package jasper for versions less than 2.0.32-5. A patched version of the package is available...
AZL-66198 CVE-2025-8837 affecting package jasper for versions less than 2.0.32-5
A vulnerability was identified in JasPer up to 4.2.5. This affects the function jpcdecdump of the file src/libjasper/jpc/jpcdec.c of the component JPEG2000 File Handler. The manipulation leads to use after free. An attack has to be approached locally. The exploit has been disclosed to the public...