Download
| Alert*
oval:org.secpod.oval:def:89003045
This update for jasper fixes the following issues: Security issues fixed: - CVE-2018-19540: Fixed a heap based overflow in jas_icctxtdesc_input . - CVE-2018-19541: Fix heap based overread in jas_image_depalettize . - CVE-2018-19542: Fixed a denial of service in jp2_decode . - CVE-2018-19539: Fixed a ... oval:org.secpod.oval:def:1901738 An issue was discovered in JasPer 2.0.14. There is an access violation in the function jas_image_readcmpt in libjasper/base/jas_image.c, leading to a denial of service. |