CVE-2017-5503

Published: Mar 1, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

The dec_clnpass function in libjasper/jpc/jpc_t1dec.c in JasPer 1.900.27 allows remote attackers to cause a denial of service (invalid memory write and crash) or possibly have unspecified other impact via a crafted image.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://blogs.gentoo.org/ago/2017/01/16/jasper-invalid-memory-write-in-dec_clnpass-jpc_t1dec-c/

x_refsource_MISC

95683

vdb-entry

x_refsource_BID

[oss-security] 20170117 Re: Re: jasper: invalid memory write in dec_clnpass (jpc_t1dec.c)

mailing-list

x_refsource_MLIST

[oss-security] 20170116 jasper: invalid memory write in dec_clnpass (jpc_t1dec.c)

mailing-list

x_refsource_MLIST

GLSA-201908-03

vendor-advisory

x_refsource_GENTOO

openSUSE-SU-2020:1517

vendor-advisory

x_refsource_SUSE

openSUSE-SU-2020:1523

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-5503

Description

Affected Products

References