19 matches found
EUVD-2017-5267
Malware in sbrugna...
EUVD-2017-5263
Malware in sbrugna...
Denial Of Service (DoS)
libjasper.so is vulnerable to denial of service DoS attacks. The vulnerability exists due to a reachable assertion in jasseq.c where the jasmatrix= yend condition fails caused by an integer overflow issue in the jpcdecprocesssiz function of libjasper/jpc/jpcdec.c, causing a DoS and possibly other...
JasPer Denial of Service Vulnerability (CNVD-2017-25692)
JasPer is an open source project that aims to provide a free software-based reference implementation of the codecs specified in the JPEG-2000 Part-1 standard. A denial of service vulnerability exists in the jpcdecprocesssiz function in jpc/jpcdec.c:1297 in JasPer, which can be exploited by a remo...
JasPer Denial of Service Vulnerability (CNVD-2017-25688)
JasPer is an open source project that aims to provide a free software-based reference implementation of the codecs specified in the JPEG-2000 Part-1 standard. A denial of service vulnerability exists in the jpcdecprocesssiz function in jpc/jpcdec.c:1296 in JasPer, which can be exploited by a remo...
Authentication flaw
There is a reachable assertion abort in the function jpcdecprocesssiz in jpc/jpcdec.c:1297 in JasPer 2.0.12 that will lead to a remote denial of service attack...
CVE-2017-13746
There is a reachable assertion abort in the function jpcdecprocesssiz in jpc/jpcdec.c:1297 in JasPer 2.0.12 that will lead to a remote denial of service attack...
CVE-2017-13746
The CVE-2017-13746 issue affects JasPer 2.0.12, where a reachable assertion abort in jpc_dec_process_siz() (jpc/jpc_dec.c:1297) can cause a remote denial of service. Fedora advisories for Jasper list multiple related vulnerabilities in the 2.0.x line (e.g., CVEs 2016-9396/9397/9398/9399 and 2017-...
jasper: integer overflow in jpc_dec_process_siz()
Integer overflow in the jpcdecprocesssiz function in libjasper/jpc/jpcdec.c in JasPer before 1.900.13 allows remote attackers to have unspecified impact via a crafted file, which triggers an assertion failure...
CVE-2016-9387
Integer overflow in the jpcdecprocesssiz function in libjasper/jpc/jpcdec.c in JasPer before 1.900.13 allows remote attackers to have unspecified impact via a crafted file, which triggers an assertion failure...
CVE-2016-9387
Integer overflow in the jpcdecprocesssiz function in libjasper/jpc/jpcdec.c in JasPer before 1.900.13 allows remote attackers to have unspecified impact via a crafted file, which triggers an assertion failure...
Integer overflow
Integer overflow in the jpcdecprocesssiz function in libjasper/jpc/jpcdec.c in JasPer before 1.900.13 allows remote attackers to have unspecified impact via a crafted file, which triggers an assertion failure...
CVE-2016-9387
CVE-2016-9387: Integer overflow in JasPer’s jpc_dec_process_siz function (libjasper/jpc/jpc_dec.c) allows crafted JPEG-2000 files to trigger an assertion failure, as reported for JasPer prior to 1.900.13. The available connected documents confirm the vulnerability in the JasPer library and refere...
CVE-2016-9387
Integer overflow in the jpcdecprocesssiz function in libjasper/jpc/jpcdec.c in JasPer before 1.900.13 allows remote attackers to have unspecified impact via a crafted file, which triggers an assertion failure...
UBUNTU-CVE-2016-9387
Integer overflow in the jpcdecprocesssiz function in libjasper/jpc/jpcdec.c in JasPer before 1.900.13 allows remote attackers to have unspecified impact via a crafted file, which triggers an assertion failure...
CVE-2016-8691
The jpcdecprocesssiz function in libjasper/jpc/jpcdec.c in JasPer before 1.900.4 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted XRsiz value in a BMP image to the imginfo command...
CVE-2016-8691
The jpcdecprocesssiz function in libjasper/jpc/jpcdec.c in JasPer before 1.900.4 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted XRsiz value in a BMP image to the imginfo command...
CVE-2016-8692
The jpcdecprocesssiz function in libjasper/jpc/jpcdec.c in JasPer before 1.900.4 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted YRsiz value in a BMP image to the imginfo command...
CVE-2016-9387
Integer overflow in the jpcdecprocesssiz function in libjasper/jpc/jpcdec.c in JasPer before 1.900.13 allows remote attackers to have unspecified impact via a crafted file, which triggers an assertion failure...