ALAS-2015-479 --- jasperID: oval:org.secpod.oval:def:1200176 | Date: (C)2015-12-28 (M)2023-12-26 |
Class: PATCH | Family: unix |
An off-by-one flaw, leading to a heap-based buffer overflow, was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code. An unrestricted stack memory use flaw was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code
Platform: |
Amazon Linux AMI |