Lucene search
Veracode Vulnerability DatabaseVERACODE:20462HistoryJun 07, 2019 - 3:32 a.m.
Denial Of Service (DoS)
2019-06-0703:32:34
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
16
EPSS
0.006
Percentile
78.8%
libjasper.so is vulnerable to denial of service. A heap-based buffer overflow of size 1 in the function jas_icctxtdesc_input in libjasper/base/jas_icc.c allows an attacker to crash the process.
References
lists.opensuse.org/opensuse-security-announce/2019-10/msg00023.html
lists.opensuse.org/opensuse-security-announce/2019-10/msg00025.html
bugzilla.suse.com/show_bug.cgi?id=1117508
github.com/mdadams/jasper/issues/182
lists.debian.org/debian-lts-announce/2019/01/msg00003.html
www.oracle.com/security-alerts/cpuapr2020.html
www.suse.com/security/cve/CVE-2018-19540/
Related
cvelist
cvelist
CVE-2018-19540
2018-11-26 03:00:00
nvd
nvd
CVE-2018-19540
2018-11-26 03:29:00
osv
osv
CVE-2018-19540
2018-11-26 03:29:00
jasper - security update
2019-01-02 00:00:00
jasper-2.0.33-1.2 on GA media
2024-06-15 00:00:00
cve
cve
CVE-2018-19540
2018-11-26 03:29:00
prion
prion
Heap overflow
2018-11-26 03:29:00
redhatcve
redhatcve
CVE-2018-19540
2018-12-13 11:04:52
suse
suse
Security update for jasper (moderate)
2019-10-07 00:00:00
Security update for jasper (moderate)
2019-10-07 00:00:00
openvas
openvas
openSUSE: Security Advisory for jasper (openSUSE-SU-2019:2279-1)
2019-10-08 00:00:00
openSUSE: Security Advisory for jasper (openSUSE-SU-2019:2282-1)
2020-01-09 00:00:00
Mageia: Security Advisory (MGASA-2019-0381)
2022-01-28 00:00:00
ubuntucve
ubuntucve
CVE-2018-19540
2018-11-26 00:00:00
nessus
nessus
SUSE SLED15 / SLES15 Security Update : jasper (SUSE-SU-2019:2512-1)
2019-10-03 00:00:00
openSUSE Security Update : jasper (openSUSE-2019-2279)
2019-10-08 00:00:00
openSUSE Security Update : jasper (openSUSE-2019-2282)
2019-10-08 00:00:00
mageia
mageia
Updated jasper packages fix security vulnerabilities
2019-12-13 21:25:24
debian
debian
[SECURITY] [DLA 1628-1] jasper security update
2019-01-02 22:57:11
freebsd
freebsd
jasper -- multiple vulnerabilities
2020-07-28 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2020
2020-10-20 00:00:00
Oracle Critical Patch Update Advisory - April 2020
2020-04-14 00:00:00