2 matches found
Denial Of Service (DoS) Through Divide By Zero
JasPer is vulnerable to denial of service attacks. A remote attacker could cause an application crash via a crafted XRsiz value in a BMP image to the imginfo command. Affected is the function jpcdecprocesssiz of the file libjasper/jpc/jpcdec.c of the component imginfo...
CVE-2016-8691
The jpcdecprocesssiz function in libjasper/jpc/jpcdec.c in JasPer before 1.900.4 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted XRsiz value in a BMP image to the imginfo command...