Lucene search
K

21 matches found

Circl
Circl
added 2025/03/27 2:4 p.m.8 views

CVE-2015-5221

creationtimestamp| type| source ---|---|--- 2025-03-27 14:04:29+00:00| seen| https://www.thezdi.com/blog/2025/3/20/mindshare-using-binary-ninja-api-to-detect-potential-use-after-free-vulnerabilities...

5.5CVSS6.7AI score0.0219EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2016:2775-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.1AI score0.14447EPSS
Exploits5References20
OpenVAS
OpenVAS
added 2018/11/20 12:0 a.m.38 views

Debian: Security Advisory (DLA-1583-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.04676EPSS
Exploits3References3
Cloud Foundry
Cloud Foundry
added 2018/07/10 12:0 a.m.318 views

USN-3693-1: JasPer vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Description Affected Cloud Foundry Products and Versions Severity is medium unless otherwise noted. All versions of Cloud Foundry cflinuxfs2 prior to 1.222.0 Mitigation OSS users are strongly encouraged to follow one...

7.8CVSS7AI score0.05686EPSS
Exploits2
CVE
CVE
added 2017/07/25 6:0 p.m.139 views

CVE-2015-5221

CVE-2015-5221 is a vulnerability in the JasPer JPEG-2000 library (libjasper/mif/mif_cod.c, function mif_process_cmpt). Multiple connected sources confirm a memory safety issue in this area: the core flaw is described as a use-after-free or memory misreference in the mif_process_cmpt path, exploit...

5.5CVSS5.8AI score0.0219EPSS
Exploits0References12Affected Software1
UbuntuCve
UbuntuCve
added 2017/07/25 12:0 a.m.30 views

CVE-2015-5221

Use-after-free vulnerability in the mifprocesscmpt function in libjasper/mif/mifcod.c in the JasPer JPEG-2000 library before 1.900.2 allows remote attackers to cause a denial of service crash via a crafted JPEG 2000 image file...

5.5CVSS6.9AI score0.0219EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/06/16 12:0 a.m.33 views

EulerOS 2.0 SP1 : jasper (EulerOS-SA-2017-1094)

According to the versions of the jasper package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple flaws were found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to...

7.8CVSS7.2AI score0.04414EPSS
Exploits11References31
Tenable Nessus
Tenable Nessus
added 2017/06/16 12:0 a.m.38 views

EulerOS 2.0 SP2 : jasper (EulerOS-SA-2017-1095)

According to the versions of the jasper package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple flaws were found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to...

7.8CVSS7.2AI score0.04414EPSS
Exploits11References31
Tenable Nessus
Tenable Nessus
added 2017/06/07 12:0 a.m.43 views

Amazon Linux AMI : jasper (ALAS-2017-836)

Multiple flaws were found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code. CVE-2016-8654 , CVE-2016-9560 , CVE-2016-10249 , CVE-2015-5203 , CVE-2015-5221 , CVE-2016-1577 , CVE-2016-8690...

9.3CVSS7AI score0.04414EPSS
Exploits11References30
Tenable Nessus
Tenable Nessus
added 2017/05/11 12:0 a.m.47 views

OracleVM 3.3 / 3.4 : jasper (OVMSA-2017-0102)

The remote OracleVM system is missing necessary patches to address critical security updates : - Bump release - Multiple security fixes fixed by thoger: CVE-2015-5203 CVE-2015-5221 CVE-2016-1577 CVE-2016-1867 CVE-2016-2089 CVE-2016-2116 CVE-2016-8654 CVE-2016-8690 CVE-2016-8691 CVE-2016-8692...

7.8CVSS6.8AI score0.18501EPSS
Exploits11References37
Tenable Nessus
Tenable Nessus
added 2017/05/11 12:0 a.m.54 views

Scientific Linux Security Update : jasper on SL6.x, SL7.x i386/x86_64 (20170509)

Security Fixes : Multiple flaws were found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code. CVE-2016-8654, CVE-2016-9560, CVE-2016-10249, CVE-2015-5203, CVE-2015-5221, CVE-2016-1577,...

7.8CVSS7.1AI score0.04414EPSS
Exploits11References31
OpenVAS
OpenVAS
added 2016/12/07 12:0 a.m.33 views

Fedora Update for jasper FEDORA-2016-9b17661de5

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.6CVSS7AI score0.03269EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/11/18 12:0 a.m.51 views

openSUSE Security Update : jasper (openSUSE-2016-1309)

This update for jasper to version 1.900.14 fixes several issues. These security issues were fixed : - CVE-2016-8887: NULL pointer dereference in jp2colrdestroy jp2cod.c bsc1006836 - CVE-2016-8886: memory allocation failure in jasmalloc jasmalloc.c bsc1006599 - CVE-2016-8884,CVE-2016-8885: two NUL...

10CVSS6.7AI score0.14447EPSS
Exploits5References37
Tenable Nessus
Tenable Nessus
added 2016/11/15 12:0 a.m.35 views

Fedora 25 : jasper (2016-9b17661de5)

Security fix for CVE-2015-5203, CVE-2015-5221, CVE-2016-1867, CVE-2016-1577 and CVE-2016-2116. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...

7.6CVSS6.6AI score0.03269EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2016/11/11 12:0 a.m.55 views

SUSE SLED12 / SLES12 Security Update : jasper (SUSE-SU-2016:2775-1)

This update for jasper to version 1.900.14 fixes several issues. These security issues were fixed : - CVE-2016-8887: NULL pointer dereference in jp2colrdestroy jp2cod.c bsc1006836 - CVE-2016-8886: memory allocation failure in jasmalloc jasmalloc.c bsc1006599 - CVE-2016-8884,CVE-2016-8885: two NUL...

10CVSS6.7AI score0.14447EPSS
Exploits5References58
OSV
OSV
added 2016/11/10 5:6 p.m.13 views

SUSE-SU-2016:2775-1 Security update for jasper

This update for jasper to version 1.900.14 fixes several issues. These security issues were fixed: - CVE-2016-8887: NULL pointer dereference in jp2colrdestroy jp2cod.c bsc1006836 - CVE-2016-8886: memory allocation failure in jasmalloc jasmalloc.c bsc1006599 - CVE-2016-8884,CVE-2016-8885: two null...

10CVSS7AI score0.14447EPSS
Exploits5References38
Tenable Nessus
Tenable Nessus
added 2016/11/07 12:0 a.m.36 views

openSUSE Security Update : jasper (openSUSE-2016-1270)

This update for jasper to version 1.900.14 fixes several issues. These security issues were fixed : - CVE-2008-3522: Buffer overflow in the jasstreamprintf function in libjasper/base/jasstream.c in JasPer might have allowed context-dependent attackers to have an unknown impact via vectors related...

10CVSS7.5AI score0.18501EPSS
Exploits5References38
Tenable Nessus
Tenable Nessus
added 2016/09/22 12:0 a.m.41 views

Fedora 23 : jasper (2016-bbecf64af4)

Fix broken ABI ---- Security fix for CVE-2015-5203, CVE-2015-5221, CVE-2016-1867, CVE-2016-1577 and CVE-2016-2116. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and form...

7.6CVSS6.6AI score0.03269EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2016/09/22 12:0 a.m.39 views

Fedora Update for jasper FEDORA-2016-bbecf64af4

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.6CVSS7AI score0.03269EPSS
Exploits0References2
Mageia
Mageia
added 2016/09/16 9:27 a.m.34 views

Updated jasper packages fix security vulnerability

A double-free issue in JasPer 1.900.1 in the jasperimagestopload function can cause a denial of service if a specially crafted JPEG image is loaded CVE-2015-5203. A use-after-free which leads to double-free vulnerability was found in Jasper JPEG-2000 library, in src/libjasper/mif/mifcod.c file...

5.5CVSS6.4AI score0.0219EPSS
Exploits0References2
Rows per page
Query Builder