[3.8] jasper: Multiple vulnerabilities (CVE-2018-18873, CVE-2018-19539, CVE-2018-19540, CVE-2018-19541, CVE-2018-19542, CVE-2018-20570, CVE-2018-20584, CVE-2018-20622)
CVE-2018-18873: An issue was discovered in JasPer 2.0.14. There is a
NULL pointer
dereference in the function ras_putdatastd in ras/ras_enc.c.
References:
https://github.com/mdadams/jasper/issues/184
CVE-2018-19539: An issue was discovered in JasPer 2.0.14. There is an
access violation in the function
jas_image_readcmpt in libjasper/base/jas_image.c, leading to a denial
of service.
References:
https://github.com/mdadams/jasper/issues/182
CVE-2018-19540: An issue was discovered in JasPer 2.0.14. There is a
heap-based
buffer overflow of size 1 in the function jas_icctxtdesc_input in
libjasper/base/jas_icc.c.
References:
https://github.com/mdadams/jasper/issues/182
https://nvd.nist.gov/vuln/detail/CVE-2018-19540
CVE-2018-19541: An issue was discovered in JasPer 2.0.14. There is a
heap-based buffer over-read
of size 8 in the function jas_image_depalettize in
libjasper/base/jas_image.c.
References:
https://github.com/mdadams/jasper/issues/182
https://nvd.nist.gov/vuln/detail/CVE-2018-19541
CVE-2018-19542: An issue was discovered in JasPer 2.0.14. There is a
NULL pointer dereference
in the function jp2_decode in libjasper/jp2/jp2_dec.c, leading to a
denial of service.
References:
https://github.com/mdadams/jasper/issues/182
https://nvd.nist.gov/vuln/detail/CVE-2018-19542
CVE-2018-20570: jp2_encode in jp2/jp2_enc.c in JasPer 2.0.14 has
a heap-based buffer over-read.
References:
https://github.com/mdadams/jasper/issues/191
CVE-2018-20584: JasPer 2.0.14 allows remote attackers to cause a
denial
of service (application hang) via an attempted conversion to the jp2
format.
References:
https://github.com/mdadams/jasper/issues/192
CVE-2018-20622: JasPer 2.0.14 has a memory leak in base/jas_malloc.c
in libjasper.a when “—output-format jp2” is used.
References:
https://github.com/mdadams/jasper/issues/193
(from redmine: issue id 10398, created on 2019-05-02)
- Relations:
- parent #10396