8 matches found
EUVD-2021-26610
Malware in sbrugna...
SUSE SLES11 Security Update : jasper (SUSE-SU-2021:14627-1)
The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:14627-1 advisory. - There's a flaw in jasper's jpc encoder in versions prior to 2.0.23. Crafted input provided to jasper by an attacker could cause an arbitrary...
Fedora 32 : mingw-jasper (2021-b1b17185fc)
The remote Fedora 32 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2021-b1b17185fc advisory. - jp2decode in jp2/jp2dec.c in libjasper in JasPer 2.0.24 has a heap-based buffer over-read when there is an invalid relationship between the number of...
Fedora 33 : mingw-jasper (2021-8ecb3686ca)
The remote Fedora 33 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2021-8ecb3686ca advisory. - jp2decode in jp2/jp2dec.c in libjasper in JasPer 2.0.24 has a heap-based buffer over-read when there is an invalid relationship between the number of...
CVE-2021-3272
jp2decode in jp2/jp2dec.c in libjasper in JasPer 2.0.24 has a heap-based buffer over-read when there is an invalid relationship between the number of channels and the number of image components...
UBUNTU-CVE-2021-3272
jp2decode in jp2/jp2dec.c in libjasper in JasPer 2.0.24 has a heap-based buffer over-read when there is an invalid relationship between the number of channels and the number of image components...
CVE-2021-3272
jp2decode in jp2/jp2dec.c in libjasper in JasPer 2.0.24 has a heap-based buffer over-read when there is an invalid relationship between the number of channels and the number of image components...
CVE-2021-3272
CVE-2021-3272 affects the Jasper JPEG-2000 library. The issue is in jp2_decode() of libjasper (JasPer 2.0.24) where a heap-based buffer over-read can occur when there is an invalid relationship between the number of channels and the number of image components. This can lead to information disclos...