CVE search results

21 – 30 of 112 results

Detailed view

Sort by:

CVE-2018-19543

Negligible priority

Vulnerable

An issue was discovered in JasPer 2.0.14. There is a heap-based buffer over-read of size 8 in the function jp2_decode in libjasper/jp2/jp2_dec.c.

1 affected packages

jasper

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
jasper	Not in release	Not in release	Not in release	Not in release	Vulnerable

CVE-2018-19542

Low priority

Fixed

An issue was discovered in JasPer 2.0.14. There is a NULL pointer dereference in the function jp2_decode in libjasper/jp2/jp2_dec.c, leading to a denial of service.

1 affected packages

jasper

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
jasper	—	—	Not in release	Not in release	Fixed

An issue was discovered in JasPer 1.900.8, 1.900.9, 1.900.10, 1.900.11, 1.900.12, 1.900.13, 1.900.14, 1.900.15, 1.900.16, 1.900.17, 1.900.18, 1.900.19, 1.900.20, 1.900.21, 1.900.22, 1.900.23, 1.900.24, 1.900.25, 1.900.26,...

1 affected packages

jasper

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
jasper	Not in release	Not in release	Not in release	Not in release	Vulnerable

CVE-2018-19540

Low priority

Vulnerable

1 affected packages

jasper

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
jasper	Not in release	Not in release	Not in release	Not in release	Vulnerable

CVE-2018-19539

Negligible priority

Vulnerable

An issue was discovered in JasPer 2.0.14. There is an access violation in the function jas_image_readcmpt in libjasper/base/jas_image.c, leading to a denial of service.

1 affected packages

jasper

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
jasper	Not in release	Not in release	Not in release	Not in release	Vulnerable

CVE-2018-19139

Negligible priority

Vulnerable

An issue has been found in JasPer 2.0.14. There is a memory leak in jas_malloc.c when called from jpc_unk_getparms in jpc_cs.c.

1 affected packages

jasper

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
jasper	Not in release	Not in release	Not in release	Not in release	Vulnerable

CVE-2018-18873

Low priority

Fixed

An issue was discovered in JasPer 2.0.14. There is a NULL pointer dereference in the function ras_putdatastd in ras/ras_enc.c.

1 affected packages

jasper

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
jasper	—	—	Not in release	Not in release	Fixed

CVE-2016-9583

Medium priority

Not affected

An out-of-bounds heap read vulnerability was found in the jpc_pi_nextpcrl() function of jasper before 2.0.6 when processing crafted input.

1 affected packages

jasper

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
jasper	—	—	—	—	Not affected

CVE-2018-9154

Negligible priority

Vulnerable

There is a reachable abort in the function jpc_dec_process_sot in libjasper/jpc/jpc_dec.c of JasPer 2.0.14 that will lead to a remote denial of service attack by triggering an unexpected jas_alloc2 return value, a different...

1 affected packages

jasper

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
jasper	—	—	—	Not in release	Vulnerable

CVE-2018-5431

Medium priority

Needs evaluation

The domain designer component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server Community Edition, TIBCO JasperReports Server for ActiveMatrix BPM, TIBCO Jaspersoft for AWS with Multi-Tenancy, and...

1 affected packages

jasperreports

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
jasperreports	Not in release	Not in release	Not in release	Needs evaluation	Needs evaluation

Export to JSON

Results by page:

Search CVE reports

CVE-2018-19543

CVE-2018-19542

CVE-2018-19541

CVE-2018-19540

CVE-2018-19539

CVE-2018-19139

CVE-2018-18873

CVE-2016-9583

CVE-2018-9154

CVE-2018-5431