| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2011-4517 | 6.8 |
The jpc_crg_getparms function in libjasper/jpc/jpc_cs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a deni
|
20-12-2023 - 18:29 | 15-12-2011 - 03:57 | |
| CVE-2017-1000050 | 5.0 |
JasPer 2.0.12 is vulnerable to a NULL pointer exception in the function jp2_encode which failed to check to see if the image contained at least one component resulting in a denial-of-service.
|
22-02-2021 - 14:20 | 17-07-2017 - 13:18 | |
| CVE-2016-9600 | 4.3 |
JasPer before version 2.0.10 is vulnerable to a null pointer dereference was found in the decoded creation of JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash.
|
09-10-2019 - 23:20 | 12-03-2018 - 15:29 | |
| CVE-2014-8158 | 6.8 |
Multiple stack-based buffer overflows in jpc_qmfb.c in JasPer 1.900.1 and earlier allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 2000 image.
|
30-10-2018 - 16:27 | 26-01-2015 - 15:59 | |
| CVE-2014-9029 | 7.5 |
Multiple off-by-one errors in the (1) jpc_dec_cp_setfromcox and (2) jpc_dec_cp_setfromrgn functions in jpc/jpc_dec.c in JasPer 1.900.1 and earlier allow remote attackers to execute arbitrary code via a crafted jp2 file, which triggers a heap-based bu
|
09-10-2018 - 19:54 | 08-12-2014 - 16:59 |