6 matches found
EUVD-2025-24131
Malicious code in bioql PyPI...
CLSA-2025-1759498325 jasper: Fix of CVE-2025-8837
CVE-2025-8837: fix use after free vulnerability in jpcdecdump function...
CVE-2025-8837
A vulnerability was identified in JasPer up to 4.2.5. This affects the function jpcdecdump of the file src/libjasper/jpc/jpcdec.c of the component JPEG2000 File Handler. The manipulation leads to use after free. An attack has to be approached locally. The exploit has been disclosed to the public...
CVE-2025-8837 JasPer JPEG2000 File jpc_dec.c jpc_dec_dump use after free
A vulnerability was identified in JasPer up to 4.2.5. This affects the function jpcdecdump of the file src/libjasper/jpc/jpcdec.c of the component JPEG2000 File Handler. The manipulation leads to use after free. An attack has to be approached locally. The exploit has been disclosed to the public...
CVE-2025-8837
CVE-2025-8837 affects JasPer up to 4.2.5, in the JPC decoder (jpc_dec_dump) of the JPEG2000 File Handler. The issue enables a use-after-free condition when processing malformed input, with local attack requirements and public exploit disclosure. Multiple connected advisories report a patch to upg...
JasPer 安全漏洞
Jasper is a flexible and powerful GitHub issue reader open-sourced by Jasper. A security vulnerability exists in JasPer 4.2.5 and earlier versions, which stems from a post-release reuse issue in the function jpcdecdump in the file src/libjasper/jpc/jpcdec.c. The vulnerability is caused by the...