The jpc_dec_tilefini function in libjasper/jpc/jpc_dec.c...
Moderate severity
Unreviewed
Published
May 17, 2022
to the GitHub Advisory Database
•
Updated Feb 3, 2023
Description
Published by the National Vulnerability Database
Jan 13, 2017
Published to the GitHub Advisory Database
May 17, 2022
Last updated
Feb 3, 2023
The jpc_dec_tilefini function in libjasper/jpc/jpc_dec.c in JasPer before 1.900.8 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file.
References