Double free vulnerability in the mem_close function in jas_stream.c in JasPer prior to 1.900.10 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image to the imginfo command.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jasper project jasper |
||
opensuse opensuse 13.2 |
||
fedoraproject fedora 23 |