Jasper Security Vulnerabilities and Issues — Jasper CVE List

Lucene search

Jasper ProjectJasper

6 matches found

CVE•added 2021/01/27 8:15 a.m.•174 views

CVE-2021-3272

jp2_decode in jp2/jp2_dec.c in libjasper in JasPer 2.0.24 has a heap-based buffer over-read when there is an invalid relationship between the number of channels and the number of image components.

5.5CVSS6.3AI score0.00071EPSS

CVE•added 2021/02/23 6:15 p.m.•120 views

CVE-2021-26926

A flaw was found in jasper before 2.0.25. An out of bounds read issue was found in jp2_decode function whic may lead to disclosure of information or program crash.

7.1CVSS6.4AI score0.00102EPSS

CVE•added 2021/02/23 8:15 p.m.•100 views

CVE-2021-26927

A flaw was found in jasper before 2.0.25. A null pointer dereference in jp2_decode in jp2_dec.c may lead to program crash and denial of service.

5.5CVSS5.7AI score0.00073EPSS

CVE•added 2021/03/25 7:15 p.m.•84 views

CVE-2021-3443

A NULL pointer dereference flaw was found in the way Jasper versions before 2.0.27 handled component references in the JP2 image format decoder. A specially crafted JP2 image file could cause an application using the Jasper library to crash when opened.

5.5CVSS5.3AI score0.00036EPSS

CVE•added 2021/03/25 7:15 p.m.•77 views

CVE-2021-3467

A NULL pointer dereference flaw was found in the way Jasper versions before 2.0.26 handled component references in CDEF box in the JP2 image format decoder. A specially crafted JP2 image file could cause an application using the Jasper library to crash when opened.

5.5CVSS5.6AI score0.00073EPSS

CVE•added 2021/07/15 4:15 p.m.•58 views

CVE-2021-27845

A Divide-by-zero vulnerability exists in JasPer Image Coding Toolkit 2.0 in jasper/src/libjasper/jpc/jpc_enc.c

5.5CVSS5.2AI score0.00252EPSS