Lucene search
K

30 matches found

Cvelist
Cvelist
added 2016/04/13 2:0 p.m.27 views

CVE-2016-1577

Double free vulnerability in the jasiccattrvaldestroy function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted ICC color profile in a JPEG 2000 image file, a different vulnerability than CVE-2014-8137...

7.1AI score0.03269EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2016/03/03 2:0 p.m.25 views

CVE-2016-2116

Memory leak in the jasiccprofcreatefrombuf function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service memory consumption via a crafted ICC color profile in a JPEG 2000 image file...

5.7CVSS6.9AI score0.02975EPSS
Exploits0References2
Cvelist
Cvelist
added 2016/02/08 7:0 p.m.28 views

CVE-2016-2089

The jasmatrixclip function in jasseq.c in JasPer 1.900.1 allows remote attackers to cause a denial of service invalid read and application crash via a crafted JPEG 2000 image...

6.5AI score0.02556EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2016/02/08 12:0 a.m.26 views

CVE-2016-2089

The jasmatrixclip function in jasseq.c in JasPer 1.900.1 allows remote attackers to cause a denial of service invalid read and application crash via a crafted JPEG 2000 image...

6.5CVSS6.9AI score0.02556EPSS
Exploits0References3
CVE
CVE
added 2016/01/20 4:0 p.m.99 views

CVE-2016-1867

The CVE entry CVE-2016-1867 describes a denial-of-service via an out-of-bounds read in JasPer 1.900.1 when processing crafted JPEG 2000 images. Connected sources show a wider set of JasPer vulnerabilities affecting multiple products across distributions (CVE-2015-5203, -5221, -2016-8654, -2016-86...

6.5CVSS6.3AI score0.02314EPSS
Exploits0References5Affected Software1
UbuntuCve
UbuntuCve
added 2015/01/22 12:0 a.m.25 views

CVE-2014-8157

Off-by-one error in the jpcdecprocesssot function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted JPEG 2000 image, which triggers a heap-based buffer overflow...

7.5CVSS7.5AI score0.16855EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2015/01/22 12:0 a.m.29 views

CVE-2014-8158

Multiple stack-based buffer overflows in jpcqmfb.c in JasPer 1.900.1 and earlier allow remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted JPEG 2000 image...

6.8CVSS7.5AI score0.14447EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/01/06 12:0 a.m.29 views

Fedora 21 : jasper-1.900.1-29.fc21 (2014-16292)

Fixes various flaws: CVE-2014-9029, CVE-2014-8138, CVE-2014-8137 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing addition...

7.5CVSS7AI score0.18501EPSS
Exploits0References7
OSV
OSV
added 2014/12/24 12:0 a.m.5 views

UBUNTU-CVE-2014-8137

Double free vulnerability in the jasiccattrvaldestroy function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted ICC color profile in a JPEG 2000 image file...

6.8CVSS7.3AI score0.14547EPSS
Exploits0References6
Prion
Prion
added 2014/12/08 4:59 p.m.30 views

Heap overflow

Multiple off-by-one errors in the 1 jpcdeccpsetfromcox and 2 jpcdeccpsetfromrgn functions in jpc/jpcdec.c in JasPer 1.900.1 and earlier allow remote attackers to execute arbitrary code via a crafted jp2 file, which triggers a heap-based buffer overflow...

7.5CVSS8.1AI score0.18404EPSS
Exploits0References19Affected Software1
UbuntuCve
UbuntuCve
added 2014/12/04 12:0 a.m.41 views

CVE-2014-9029

Multiple off-by-one errors in the 1 jpcdeccpsetfromcox and 2 jpcdeccpsetfromrgn functions in jpc/jpcdec.c in JasPer 1.900.1 and earlier allow remote attackers to execute arbitrary code via a crafted jp2 file, which triggers a heap-based buffer overflow...

7.5CVSS7.5AI score0.18404EPSS
Exploits0References4
Fedora
Fedora
added 2011/12/30 10:53 p.m.32 views

[SECURITY] Fedora 16 Update: jasper-1.900.1-18.fc16

This package contains an implementation of the image compression standard JPEG-2000, Part 1. It consists of tools for conversion to and from the JP2 and JPC formats...

6.8CVSS3.3AI score0.10618EPSS
Exploits0
NVD
NVD
added 2011/12/15 3:57 a.m.20 views

CVE-2011-4517

The jpccrggetparms function in libjasper/jpc/jpccs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service heap memory corruption, via a crafte...

6.8CVSS7.4AI score0.10618EPSS
Exploits0References19
OSV
OSV
added 2011/12/15 3:57 a.m.6 views

CVE-2011-4516

Heap-based buffer overflow in the jpccoxgetcompparms function in libjasper/jpc/jpccs.c in JasPer 1.900.1 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted numrlvls value in a coding style default COD marker segment in a JPEG2000 file...

7.9AI score
Exploits0References23
Prion
Prion
added 2011/12/15 3:57 a.m.28 views

Heap overflow

The jpccrggetparms function in libjasper/jpc/jpccs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service heap memory corruption, via a crafte...

6.8CVSS8.1AI score0.10618EPSS
Exploits0References19Affected Software9
Prion
Prion
added 2011/12/15 3:57 a.m.17 views

Heap overflow

Heap-based buffer overflow in the jpccoxgetcompparms function in libjasper/jpc/jpccs.c in JasPer 1.900.1 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted numrlvls value in a coding style default COD marker segment in a JPEG2000 file...

6.8CVSS8.5AI score0.10618EPSS
Exploits0References18Affected Software8
Vulnrichment
Vulnrichment
added 2011/12/15 2:0 a.m.14 views

CVE-2011-4517

The jpccrggetparms function in libjasper/jpc/jpccs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service heap memory corruption, via a crafte...

7.9AI score0.10618EPSS
Exploits0References19
Debian CVE
Debian CVE
added 2011/12/15 2:0 a.m.35 views

CVE-2011-4516

Heap-based buffer overflow in the jpccoxgetcompparms function in libjasper/jpc/jpccs.c in JasPer 1.900.1 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted numrlvls value in a coding style default COD marker segment in a JPEG2000 file...

6.8CVSS8.2AI score0.10618EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2011/12/14 12:0 a.m.34 views

CVE-2011-4516

Heap-based buffer overflow in the jpccoxgetcompparms function in libjasper/jpc/jpccs.c in JasPer 1.900.1 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted numrlvls value in a coding style default COD marker segment in a JPEG2000 file...

6.8CVSS7.4AI score0.10618EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2011/12/14 12:0 a.m.35 views

CVE-2011-4517

The jpccrggetparms function in libjasper/jpc/jpccs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service heap memory corruption, via a crafte...

6.8CVSS7.3AI score0.10618EPSS
Exploits0References4
Rows per page
Query Builder