VYPR

rpm package

suse/jasper&distro=SUSE Linux Enterprise Server 16.0

pkg:rpm/suse/jasper&distro=SUSE%20Linux%20Enterprise%20Server%2016.0

Vulnerabilities (3)

  • CVE-2025-8837MedAug 11, 2025
    affected < 4.2.8-160000.1.1fixed 4.2.8-160000.1.1

    A vulnerability was identified in JasPer up to 4.2.5. This affects the function jpc_dec_dump of the file src/libjasper/jpc/jpc_dec.c of the component JPEG2000 File Handler. The manipulation leads to use after free. An attack has to be approached locally. The exploit has been disc

  • CVE-2025-8836LowAug 11, 2025
    affected < 4.2.8-160000.1.1fixed 4.2.8-160000.1.1

    A vulnerability was determined in JasPer up to 4.2.5. Affected by this issue is the function jpc_floorlog2 of the file src/libjasper/jpc/jpc_enc.c of the component JPEG2000 Encoder. The manipulation leads to reachable assertion. The attack needs to be approached locally. The expl

  • CVE-2025-8835LowAug 11, 2025
    affected < 4.2.8-160000.1.1fixed 4.2.8-160000.1.1

    A vulnerability was found in JasPer up to 4.2.5. Affected by this vulnerability is the function jas_image_chclrspc of the file src/libjasper/base/jas_image.c of the component Image Color Space Conversion Handler. The manipulation leads to null pointer dereference. It is possible