Lucene search
K

56 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-5204

Malware in sbrugna...

5.5CVSS6.5AI score0.01928EPSS
Exploits0References19
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-8625

Malware in sbrugna...

8.8CVSS6.8AI score0.02448EPSS
Exploits1References9
F5 Networks
F5 Networks
added 2025/09/30 7:32 p.m.8 views

K000156718: Multiple ImageMagick vulnerabilities

Security Advisory Description CVE-2017-13142 In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, a crafted PNG file could trigger a crash because there was an insufficient check for short files. CVE-2017-13143 In ImageMagick before 6.9.7-6 and 7.x before 7.0.4-6, the ReadMATImage function in...

9.8CVSS6.8AI score0.03306EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/09/03 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2016-9675

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - openjpeg: A heap-based buffer overflow flaw was found in the patch for CVE-2013-6045. A crafted j2k image could cause the application to crash, or potentially...

7.8CVSS8.1AI score0.05515EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2024/09/26 6:38 a.m.240 views

USN-7037-1: OpenJPEG vulnerability

It was discovered that OpenJPEG could enter a large loop and continuously print warning messages when given specially crafted input. An attacker could potentially use this issue to cause a denial of service...

4.3CVSS5.7AI score0.00528EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.24 views

RHEL 7 : netpbm (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - jasper: integer overflows leading to out of bounds read in packet iterators in JPC decoder CVE-2016-9583 ...

7.8CVSS6.9AI score0.04414EPSS
Exploits10References26
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.33 views

RHEL 7 : jasper (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - jasper: heap-based buffer over-read of size 8 in jasimagedepalettize in libjasper/base/jasimage.c...

8.9AI score0.14547EPSS
Exploits30References58
SUSE CVE
SUSE CVE
added 2023/02/15 5:12 a.m.5 views

SUSE CVE-2015-8363

The jpeg2000readmainheaders function in libavcodec/jpeg2000dec.c in FFmpeg before 2.6.5, 2.7.x before 2.7.3, and 2.8.x through 2.8.2 does not enforce uniqueness of the SIZ marker in a JPEG 2000 image, which allows remote attackers to cause a denial of service out-of-bounds heap-memory access or...

6.8CVSS7.5AI score0.02069EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:7 a.m.5 views

SUSE CVE-2016-1867

The jpcpinextcprl function in JasPer 1.900.1 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted JPEG 2000 image...

5.5CVSS6.6AI score0.02314EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:7 a.m.3 views

SUSE CVE-2016-1923

Heap-based buffer overflow in the opjj2kupdateimagedata function in OpenJpeg 2016.1.18 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted JPEG 2000 image...

6.5CVSS9AI score0.02308EPSS
Exploits0References5
CNVD
CNVD
added 2021/01/28 12:0 a.m.5 views

JasPer heap buffer overflow vulnerability (CNVD-2021-08886)

JasPer is an open source project that aims to provide a free software-based reference implementation of the codecs specified in the JPEG-2000 Part-1 standard. A heap buffer overflow vulnerability exists in jp2decode in jp2/jp2dec.c in JasPer 2.0.24. The vulnerability stems from an invalid...

5.5CVSS7.7AI score0.01107EPSS
Exploits1References1
Veracode
Veracode
added 2020/04/10 12:34 a.m.36 views

Arbitrary Code Execution

netpbm is vulnerable to arbitrary code execution. The vulnerability exists as an input validation flaw and multiple integer overflows were discovered in the JasPer library providing support for JPEG-2000 image format and used in the jpeg2ktopam and pamtojpeg2k converters. An attacker could create...

4.3CVSS4.5AI score0.02271EPSS
Exploits1References25Affected Software1
Ubuntu
Ubuntu
added 2019/08/21 5:19 p.m.135 views

USN-4109-1: OpenJPEG vulnerabilities

It was discovered that OpenJPEG incorrectly handled certain PGX files. An attacker could possibly use this issue to cause a denial of service or possibly remote code execution. CVE-2017-17480 It was discovered that OpenJPEG incorrectly handled certain files. An attacker could possibly use this...

9.8CVSS6.7AI score0.05135EPSS
Exploits4
Veracode
Veracode
added 2019/05/02 6:10 a.m.18 views

Denial Of Service (DoS)

Jasper is vulnerable to denial of serviceDoS attacks. An attacker could execute arbitrary code or cause an application crash via a crafted color profile in a JPEG 2000 image leading to a double free vulnerability. Affected function is jasiccattrvaldestroy...

7.6CVSS7.8AI score0.03269EPSS
Exploits0References7Affected Software1
Veracode
Veracode
added 2019/04/29 2:42 a.m.25 views

Denial Of Service (DoS)

libjasper.so is vulnerable to denial of service. A NULL pointer dereference in JP2 encoder allows an attacker to crash the process via a malicious JPEG 2000 image...

6.5CVSS6.5AI score0.01511EPSS
Exploits0References4Affected Software2
CNVD
CNVD
added 2018/09/25 12:0 a.m.4 views

Denial of service vulnerability in Kingsoft pdf reader (CNVD-2018-20702)

Kingsoft PDF Reader is a compact and stable PDF reading tool. Kingsoft pdf reader has a denial of service vulnerability that can be exploited by an attacker to cause a denial of service by embedding a specific jpeg2000 image...

6.8AI score
Exploits0
Prion
Prion
added 2017/08/02 7:29 p.m.26 views

Double free

Double free vulnerability in the jasperimagestopload function in JasPer 1.900.17 allows remote attackers to cause a denial of service crash via a crafted JPEG 2000 image file...

4.3CVSS6.8AI score0.01928EPSS
Exploits0References12Affected Software4
CVE
CVE
added 2017/08/02 7:0 p.m.135 views

CVE-2015-5203

CVE-2015-5203 is a double-free flaw in JasPer’s jasper_image_stop_load() used when processing certain JPEG 2000 images. Backed by multiple connected advisories, this vulnerability can allow a remote attacker to crash an application or, in some reports, potentially execute arbitrary code. Affected...

5.5CVSS5.8AI score0.01928EPSS
Exploits0References12Affected Software1
UbuntuCve
UbuntuCve
added 2017/07/25 12:0 a.m.30 views

CVE-2015-5221

Use-after-free vulnerability in the mifprocesscmpt function in libjasper/mif/mifcod.c in the JasPer JPEG-2000 library before 1.900.2 allows remote attackers to cause a denial of service crash via a crafted JPEG 2000 image file...

5.5CVSS6.9AI score0.0219EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/06/16 12:0 a.m.38 views

EulerOS 2.0 SP2 : jasper (EulerOS-SA-2017-1095)

According to the versions of the jasper package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple flaws were found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to...

7.8CVSS7.2AI score0.04414EPSS
Exploits11References31
Rows per page
Query Builder