← Back

CVE-2018-19539

nvd nist
Published: Nov 26, 2018Modified: Nov 21, 2024

JSON object

Loading...
6.5
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Exploitability: 2.8 / Impact: 3.6
Source: NVD

Description

An issue was discovered in JasPer 2.0.14. There is an access violation in the function jas_image_readcmpt in libjasper/base/jas_image.c, leading to a denial of service.

Affected (9)

Show all products
Jasper Project: Jasper · Suse: Linux Enterprise Desktop, Linux Enterprise Server · Debian: Debian Linux · Opensuse: Leap
Jasper Project
1 product
Jasper
Suse
2 products
Linux Enterprise Desktop
Linux Enterprise Server
Debian
1 product
Debian Linux
Opensuse
1 product
Leap
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Jasper
Version 2.0.14
Configuration B
6 vulnerable
Vulnerable SoftwareAffected Versions
Suse
Linux Enterprise Desktop
Version 12 sp3
Linux Enterprise Desktop
Version 12 sp4
Suse
Linux Enterprise Server
Version 11 sp3
Linux Enterprise Server
Version 11 sp4
Linux Enterprise Server
Version 12 sp1
Linux Enterprise Server
Version 12 sp2
Configuration C
1 vulnerable
Vulnerable SoftwareAffected Versions
Debian Linux
Version 8.0
Configuration D
1 vulnerable
Vulnerable SoftwareAffected Versions
Leap
Version 15.0

Related CWEs

CWE-617
Reachable Assertion
The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

References (8)

Source: cve@mitre.org
Mailing ListThird Party Advisory
Source: cve@mitre.org
ExploitThird Party Advisory
Source: cve@mitre.org
Third Party Advisory
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.