ALT-PU-2021-1241-1
Closed vulnerabilities
Published: 2021-02-23
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2021-26926
A flaw was found in jasper before 2.0.25. An out of bounds read issue was found in jp2_decode function whic may lead to disclosure of information or program crash.
Severity: HIGH (7.1)
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
References:
- https://github.com/jasper-software/jasper/commit/41f214b121b837fa30d9ca5f2430212110f5cd9b
- https://github.com/jasper-software/jasper/commit/41f214b121b837fa30d9ca5f2430212110f5cd9b
- https://github.com/jasper-software/jasper/issues/264
- https://github.com/jasper-software/jasper/issues/264
- FEDORA-2021-5a34dd3f2d
- FEDORA-2021-5a34dd3f2d
- FEDORA-2021-7f3323a767
- FEDORA-2021-7f3323a767
- FEDORA-2021-56a49b0bc6
- FEDORA-2021-56a49b0bc6
Published: 2021-02-23
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2021-26927
A flaw was found in jasper before 2.0.25. A null pointer dereference in jp2_decode in jp2_dec.c may lead to program crash and denial of service.
Severity: MEDIUM (5.5)
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
References:
- https://github.com/jasper-software/jasper/commit/41f214b121b837fa30d9ca5f2430212110f5cd9b
- https://github.com/jasper-software/jasper/commit/41f214b121b837fa30d9ca5f2430212110f5cd9b
- https://github.com/jasper-software/jasper/issues/265
- https://github.com/jasper-software/jasper/issues/265
- FEDORA-2021-5a34dd3f2d
- FEDORA-2021-5a34dd3f2d
- FEDORA-2021-7f3323a767
- FEDORA-2021-7f3323a767
- FEDORA-2021-56a49b0bc6
- FEDORA-2021-56a49b0bc6
Published: 2021-01-27
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2021-3272
jp2_decode in jp2/jp2_dec.c in libjasper in JasPer 2.0.24 has a heap-based buffer over-read when there is an invalid relationship between the number of channels and the number of image components.
Severity: MEDIUM (5.5)
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
References: