Published: 23/02/2021 Updated: 07/11/2023

CVSS v2 Base Score: 5.8 | Impact Score: 4.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.1 | Impact Score: 5.2 | Exploitability Score: 1.8

VMScore: 516

Vector: AV:N/AC:M/Au:N/C:P/I:N/A:P

A flaw was found in jasper prior to 2.0.25. An out of bounds read issue was found in jp2_decode function whic may lead to disclosure of information or program crash.

Vulnerable Product	Search on Vulmon	Subscribe to Product
jasper project jasper
fedoraproject fedora 32
fedoraproject fedora 33
fedoraproject fedora 34

A flaw was found in the Jasper tool's jpc encoder This flaw allows an attacker to craft input provided to Jasper, causing an arbitrary out-of-bounds write The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability (CVE-2020-27828) A flaw was found in jasper before 2025 An out of bounds read is ...

A security issue was found in jasper before version 2025 An out of bounds read issue was found in the jp2_decode function, which may lead to disclosure of information or a program crash ...

CWE-125 https://github.com/jasper-software/jasper/issues/264 https://github.com/jasper-software/jasper/commit/41f214b121b837fa30d9ca5f2430212110f5cd9b https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JYVCFVTVPL66OS7LCNLUSYCMYQAVWXMM/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YRZFZSJ4UVLLMXSKHR455TAC2SD3TOHI/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JSXESYUHMO522Z3RHXOQ2SJNWP3XTO67/https://nvd.nist.gov https://alas.aws.amazon.com/AL2/ALAS-2023-2018.html

CVE-2021-26926

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect