25 matches found
Assertion Failure
libjasper.so is vulnerable to an Assertion Failure. The vulnerability is due to improper handling in the jpcstreamlistremove function within jpcdec.c, allowing attackers to trigger a denial of service through a malformed image file...
Null Dereference
libjasper.so is vulnerable to Null dereferencing. The vulnerability occurs due to a lack of validation performed while processing specially crafted image files. An attacker can trigger a crash via a specially crafted image file which could lead to DoS...
NULL Pointer Dereference
libjasper.so is vulnerable to NULL Pointer Dereference. The vulnerability is due to jp2decode function in jp2dec.c as there is no validation for the index obtained through the chantocmptlut array before it is used to access and set component types. An attacker can exploit this via specially craft...
Denial Of Service (DoS)
libjasper.so is vulnerable to denial of service. A heap-based buffer overflow of size 1 in the function jasicctxtdescinput in libjasper/base/jasicc.c allows an attacker to crash the process...
Denial Of Service (DoS)
libjasper.so is vulnerable to denial of service DoS attacks. The vulnerability exists due to a reachable abort caused by the jpcdecprocesssot function in libjasper/jpc/jpcdec.c. The exploit results in the function returning an unexpected jasalloc2 value, allowing remote attackers to crash the...
Denial Of Service (DoS)
libjasper.so is vulnerable to denial of service DoS. Failure to properly handle an integer sent via a request to the JPC bitstream code allows an attacker to crash the application...
Denial Of Service (DoS)
libjasper.so is vulnerable to denial of service. A NULL pointer dereference in JP2 encoder allows an attacker to crash the process via a malicious JPEG 2000 image...
Denial Of Service (DoS)
libjasper.so is vulnerable to denial of service. A lack of domain checks for the ICT/RCT in the JPC codec allows an attacker to cause an unexpected application termination through reachable assertions...
Denial Of Service (DoS)
libjasper.so is vulnerable to denial of service. A stack-based buffer overflow in jpcdectileinit allows an attacker to crash the process or potentially retrieve confidential information from the process memory or execute arbitrary code...
Denial Of Service (DoS)
libjasper.so is vulnerable to denial of service. An access violation in the jasimagereadcmpt function in libjasper/base/jasimage.c, due to lack of NULL checks, allows an attacker to crash the process and cause a denial of service condition...
Denial Of Service (DoS)
libjasper.so is vulnerable to a denial of service DoS attack. A malicious user can pass a jpc file to the application to convert through the rasputdatastd function in ras/rasenc.c, causing a null pointer dereference that can crash the application...
NULL Pointer Dereference
libjasper.so is vulnerable to denial of service. A NULL pointer dereference in the bmpgetdata function in libjasper/bmp/bmpdec.c allows remote attackers to cause a denial of service condition by calling the imginfo command with a crafted BMP image. This vulnerability exists due to an incomplete f...
NULL Pointer Dereference
libjasper.so is vulnerable to denial of service. A NULL pointer dereference in the bmpgetdata function in libjasper/bmp/bmpdec.c allows remote attackers to cause a denial of service condition by calling the imginfo command with a crafted BMP image...
Use-After-Free (UAF)
libjasper.so is affected by a use-after-free UAF vulnerability. This is due to the way tvp and tvp-buf are freed in the mifprocesscmpt function in libjasper/mif/mifcod.c which would allow remote attackers to cause a denial of service using a crafted JPEG 2000 image file...
Denial Of Service (DoS)
libjasper.so is vulnerable to denial of service DoS attacks. A malicious user can pass a file to the calcstepsizes function in jpcdec.c to cause an assertion failure that can crash the application...
Denial Of Service (DoS)
libjasper.so is vulnerable to denial of service DoS attacks. The vulnerability exists due to a reachable assertion in jasseq.c where the jasmatrix= yend condition fails caused by an integer overflow issue in the jpcdecprocesssiz function of libjasper/jpc/jpcdec.c, causing a DoS and possibly other...
Denial Of Service (DoS)
libjasper.so is vulnerable to denial of service DoS attacks. The library does not restrict the maximum size of the image to be decoded, allowing a malicious user to pass a big image to the application to consume memory, crashing the application...
Denial Of Service (DoS)
libjasper.so is vulnerable to denial of service DoS attacks. The library contains an infinite loop in the jpcdectileinit function of jpcdec.c that can cause the application to crash...
Denial Of Service (DoS)
libjasper.so is vulnerable to denial of service DoS attacks. The jasstrdup function in jasstring.c contains multiple memory leaks that can cause the application to crash during decoding...
Denial Of Service (DoS)
libjasper.so is vulnerable to denial of service DoS attacks. A malicious user can pass a jpc file to the jpcdequantize function in jpcdec.c to cause an assertion failure that can crash the application. This issue was also given CVE-2016-9397...