jasper project

Top products

The 15 most recently published vulnerabilities affecting jasper project.

• CVE-2025-8837JasPer JPEG2000 File jpc_dec.c jpc_dec_dump use after free5.3Aug 11, 2025
• CVE-2025-8836JasPer JPEG2000 Encoder jpc_enc.c jpc_floorlog2 assertion3.3Aug 11, 2025
• CVE-2025-8835JasPer Image Color Space Conversion jas_image.c jas_image_chclrspc null pointer dereference3.3Aug 11, 2025
• CVE-2023-51257An invalid memory write issue in Jasper-Software Jasper v.4.1.1 and before allows a local attacker to execute arbitrary code.7.8Jan 16, 2024
• CVE-2022-2963A vulnerability found in jasper. This security vulnerability happens because of a memory leak bug in function cmdopts_parse that can cause a crash or segmentation fault.7.5Oct 14, 2022
• CVE-2022-40755JasPer 3.0.6 allows denial of service via a reachable assertion in the function inttobits in libjasper/base/jas_image.c.5.5Sep 16, 2022
• CVE-2021-27845A Divide-by-zero vulnerability exists in JasPer Image Coding Toolkit 2.0 in jasper/src/libjasper/jpc/jpc_enc.c5.5Jul 15, 2021
• CVE-2021-3467A NULL pointer dereference flaw was found in the way Jasper versions before 2.0.26 handled component references in CDEF box in the JP2 image format decoder. A specially crafted JP2 image file could...5.5Mar 25, 2021
• CVE-2021-3443A NULL pointer dereference flaw was found in the way Jasper versions before 2.0.27 handled component references in the JP2 image format decoder. A specially crafted JP2 image file could cause an ap...5.5Mar 25, 2021
• CVE-2021-26927A flaw was found in jasper before 2.0.25. A null pointer dereference in jp2_decode in jp2_dec.c may lead to program crash and denial of service.5.5Feb 23, 2021
• CVE-2021-26926A flaw was found in jasper before 2.0.25. An out of bounds read issue was found in jp2_decode function whic may lead to disclosure of information or program crash.7.1Feb 23, 2021
• CVE-2021-3272jp2_decode in jp2/jp2_dec.c in libjasper in JasPer 2.0.24 has a heap-based buffer over-read when there is an invalid relationship between the number of channels and the number of image components.5.5Jan 27, 2021
• CVE-2020-27828There's a flaw in jasper's jpc encoder in versions prior to 2.0.23. Crafted input provided to jasper by an attacker could cause an arbitrary out-of-bounds write. This could potentially affect data ...7.8Dec 11, 2020
• CVE-2015-8751Integer overflow in the jas_matrix_create function in JasPer allows context-dependent attackers to have unspecified impact via a crafted JPEG 2000 image, related to integer multiplication for memor...8.8Feb 17, 2020
• CVE-2017-14232The read_chunk function in flif-dec.cpp in Free Lossless Image Format (FLIF) 0.3 allows remote attackers to cause a denial of service (invalid memory read and application crash) via a crafted flif ...5.5Aug 15, 2019