Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jasper project jasper vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2017-5500
libjasper/jpc/jpc_dec.c in JasPer 1.900.17 allows remote malicious users to cause a denial of service (crash) via vectors involving left shift of a negative value.
Jasper Project Jasper 1.900.17
5.5
CVSSv3
CVE-2017-5501
Integer overflow in libjasper/jpc/jpc_tsfb.c in JasPer 1.900.17 allows remote malicious users to cause a denial of service (crash) via a crafted file.
Jasper Project Jasper 1.900.17
5.5
CVSSv3
CVE-2017-5502
libjasper/jp2/jp2_dec.c in JasPer 1.900.17 allows remote malicious users to cause a denial of service (crash) via vectors involving left shift of a negative value.
Jasper Project Jasper 1.900.17
5.5
CVSSv3
CVE-2017-5504
The jpc_undo_roi function in libjasper/jpc/jpc_dec.c in JasPer 1.900.27 allows remote malicious users to cause a denial of service (invalid memory read and crash) via a crafted image.
Jasper Project Jasper 1.900.17
5.5
CVSSv3
CVE-2017-5498
libjasper/include/jasper/jas_math.h in JasPer 1.900.17 allows remote malicious users to cause a denial of service (crash) via vectors involving left shift of a negative value.
Jasper Project Jasper 1.900.17
5.5
CVSSv3
CVE-2017-5499
Integer overflow in libjasper/jpc/jpc_dec.c in JasPer 1.900.17 allows remote malicious users to cause a denial of service (crash) via a crafted file.
Jasper Project Jasper 1.900.17
5.5
CVSSv3
CVE-2017-5503
The dec_clnpass function in libjasper/jpc/jpc_t1dec.c in JasPer 1.900.27 allows remote malicious users to cause a denial of service (invalid memory write and crash) or possibly have unspecified other impact via a crafted image.
Jasper Project Jasper 1.900.27
5.5
CVSSv3
CVE-2016-8690
The bmp_getdata function in libjasper/bmp/bmp_dec.c in JasPer prior to 1.900.5 allows remote malicious users to cause a denial of service (NULL pointer dereference) via a crafted BMP image in an imginfo command.
Jasper Project Jasper
Fedoraproject Fedora 23
7.8
CVSSv3
CVE-2016-8693
Double free vulnerability in the mem_close function in jas_stream.c in JasPer prior to 1.900.10 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image to the imginfo command.
Jasper Project Jasper
Opensuse Opensuse 13.2
Fedoraproject Fedora 23
5.5
CVSSv3
CVE-2016-8691
The jpc_dec_process_siz function in libjasper/jpc/jpc_dec.c in JasPer prior to 1.900.4 allows remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a crafted XRsiz value in a BMP image to the imginfo command.
Jasper Project Jasper
Debian Debian Linux 8.0
Fedoraproject Fedora 25
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-35229
privilege escalation
local users
CVE-2024-5405
CVE-2024-27842
CVE-2024-5274
CVE-2024-5378
CVE-2024-34152
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »