Multiple integer overflows in the (1) jas_realloc function in base/jas_malloc.c and (2) mem_resize function in base/jas_stream.c in JasPer prior to 1.900.22 allow remote malicious users to cause a denial of service via a crafted image, which triggers use after free vulnerabilities.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jasper project jasper |