30 matches found
OPENSUSE-SU-2022:0562-1 Security update for jasper
This update for jasper fixes the following issues: - CVE-2021-27845: Fixed divide-by-zery issue in cpcreate bsc1188437...
OPENSUSE-SU-2019:1315-1 Security update for jasper
This update for jasper fixes the following issues: Security issues fixed: - CVE-2018-19542: Fixed a denial of service in jp2decode bsc1117505. - CVE-2018-19539: Fixed a denial of service in jasimagereadcmpt bsc1117511. - CVE-2016-9396: Fixed a denial of service in jpccoxgetcompparms bsc1010783...
CVE-2017-14229
There is an infinite loop in the jpcdectileinit function in jpc/jpcdec.c of Jasper 2.0.13. It will lead to a remote denial of service attack...
jasper: heap-based buffer overflow in QMFB code in JPC codec
A heap-buffer overflow vulnerability was found in QMFB code in JPC codec caused by buffer being allocated with too small size. jasper versions before 2.0.0 are affected...
DSA-3785-1 jasper - security update
Bulletin has no description...
DLA-739-1 jasper - security update
Bulletin has no description...
JasPer null pointer back-reference vulnerability (CNVD-2016-10308)
JasPer is a Canadian software developer Michael Adams developed an open source implementation of the JPEG-2000 codec. A null pointer back-reference vulnerability exists in the JasPer function jpcpidestroy, which can be exploited by an attacker to crash an application and deny service to legitimat...
CVE-2011-4517
The jpccrggetparms function in libjasper/jpc/jpccs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service heap memory corruption, via a crafte...
CVE-2008-3522
Buffer overflow in the jasstreamprintf function in libjasper/base/jasstream.c in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via vectors related to the mifhdrput function and use of vsprintf...
PT-2008-4912 · Jasper +1 · Jasper +1
Name of the Vulnerable Software and Affected Versions: JasPer version 1.900.1 Description: A race condition exists in the jas stream tmpfile function, allowing local users to cause a denial of service by creating a specific temporary file, which causes the program to exit. Recommendations: For...