Jasper - Vulncode-DB

Product:
Jasper
(Jasper_project)

Repositories	https://github.com/mdadams/jasper
#Vulnerabilities	88

Date	ID	Summary	Products	Score	Patch
2018-05-04	CVE-2018-9154	There is a reachable abort in the function jpc_dec_process_sot in libjasper/jpc/jpc_dec.c of JasPer 2.0.14 that will lead to a remote denial of service attack by triggering an unexpected jas_alloc2 return value, a different vulnerability than CVE-2017-13745.	Jasper	7.5
2018-03-27	CVE-2018-9055	JasPer 2.0.14 allows denial of service via a reachable assertion in the function jpc_firstone in libjasper/jpc/jpc_math.c.	Jasper	5.5
2018-12-30	CVE-2018-20584	JasPer 2.0.14 allows remote attackers to cause a denial of service (application hang) via an attempted conversion to the jp2 format.	Debian_linux, Jasper	6.5
2018-10-31	CVE-2018-18873	An issue was discovered in JasPer 2.0.14. There is a NULL pointer dereference in the function ras_putdatastd in ras/ras_enc.c.	Ubuntu_linux, Debian_linux, Jasper, Linux_enterprise_desktop, Linux_enterprise_server	7.8
2017-06-21	CVE-2017-9782	JasPer 2.0.12 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted image, related to the jp2_decode function in libjasper/jp2/jp2_dec.c.	Jasper	5.5
2017-03-15	CVE-2017-6852	Heap-based buffer overflow in the jpc_dec_decodepkt function in jpc_t2dec.c in JasPer 2.0.10 allows remote attackers to have unspecified impact via a crafted image.	Jasper	7.8
2017-03-15	CVE-2017-6851	The jas_matrix_bindsub function in jas_seq.c in JasPer 2.0.10 allows remote attackers to cause a denial of service (invalid read) via a crafted image.	Jasper	5.5
2017-09-04	CVE-2017-14132	JasPer 2.0.13 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted image, related to the jas_image_ishomosamp function in libjasper/base/jas_image.c.	Debian_linux, Jasper	6.5
2018-11-26	CVE-2018-19542	An issue was discovered in JasPer 2.0.14. There is a NULL pointer dereference in the function jp2_decode in libjasper/jp2/jp2_dec.c, leading to a denial of service.	Ubuntu_linux, Debian_linux, Jasper, Leap, Linux_enterprise_desktop, Linux_enterprise_server	6.5
2018-11-26	CVE-2018-19539	An issue was discovered in JasPer 2.0.14. There is an access violation in the function jas_image_readcmpt in libjasper/base/jas_image.c, leading to a denial of service.	Debian_linux, Jasper, Leap, Linux_enterprise_desktop, Linux_enterprise_server	6.5