Note:
This project will be discontinued after December 13, 2021. [more]
2018-03-27
JasPer 2.0.14 allows denial of service via a reachable assertion in the function jpc_firstone in libjasper/jpc/jpc_math.c.
| Products | Jasper |
| Type | Improper Input Validation (CWE-20) |
| First patch | - None (likely due to unavailable code) |
| Links |
• https://github.com/mdadams/jasper/issues/172
• http://www.securityfocus.com/bid/103577 • https://security.gentoo.org/glsa/201908-03 |