Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jasper project vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2018-9154
There is a reachable abort in the function jpc_dec_process_sot in libjasper/jpc/jpc_dec.c of JasPer 2.0.14 that will lead to a remote denial of service attack by triggering an unexpected jas_alloc2 return value, a different vulnerability than CVE-2017-13745.
Jasper Project Jasper 2.0.14
7.2
CVSSv2
CVE-2008-3521
Race condition in the jas_stream_tmpfile function in libjasper/base/jas_stream.c in JasPer 1.900.1 allows local users to cause a denial of service (program exit) by creating the appropriate tmp.XXXXXXXXXX temporary file, which causes Jasper to exit. NOTE: this was originally repo...
Jasper Project Jasper 1.900.1
4.3
CVSSv2
CVE-2018-9252
JasPer 2.0.14 allows denial of service via a reachable assertion in the function jpc_abstorelstepsize in libjasper/jpc/jpc_enc.c.
Jasper Project Jasper 2.0.14
4.3
CVSSv2
CVE-2017-5499
Integer overflow in libjasper/jpc/jpc_dec.c in JasPer 1.900.17 allows remote malicious users to cause a denial of service (crash) via a crafted file.
Jasper Project Jasper 1.900.17
4.3
CVSSv2
CVE-2017-5502
libjasper/jp2/jp2_dec.c in JasPer 1.900.17 allows remote malicious users to cause a denial of service (crash) via vectors involving left shift of a negative value.
Jasper Project Jasper 1.900.17
4.3
CVSSv2
CVE-2017-5503
The dec_clnpass function in libjasper/jpc/jpc_t1dec.c in JasPer 1.900.27 allows remote malicious users to cause a denial of service (invalid memory write and crash) or possibly have unspecified other impact via a crafted image.
Jasper Project Jasper 1.900.27
4.3
CVSSv2
CVE-2017-5504
The jpc_undo_roi function in libjasper/jpc/jpc_dec.c in JasPer 1.900.27 allows remote malicious users to cause a denial of service (invalid memory read and crash) via a crafted image.
Jasper Project Jasper 1.900.17
4.3
CVSSv2
CVE-2017-9782
JasPer 2.0.12 allows remote malicious users to cause a denial of service (heap-based buffer over-read and application crash) via a crafted image, related to the jp2_decode function in libjasper/jp2/jp2_dec.c.
Jasper Project Jasper 2.0.12
NA
CVE-2022-40755
JasPer 3.0.6 allows denial of service via a reachable assertion in the function inttobits in libjasper/base/jas_image.c.
Jasper Project Jasper 3.0.6
4.3
CVSSv2
CVE-2016-8690
The bmp_getdata function in libjasper/bmp/bmp_dec.c in JasPer prior to 1.900.5 allows remote malicious users to cause a denial of service (NULL pointer dereference) via a crafted BMP image in an imginfo command.
Jasper Project Jasper
Fedoraproject Fedora 23
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29824
CVE-2024-30095
CVE-2024-30104
client side
CVE-2024-5840
CVE-2024-34405
unprivileged
wireless
CVE-2024-4577
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »