jasper (SUSE:Linux Enterprise Real Time 15 SP2) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Real Time 15 SP2 package jasper, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (5)
CVE-2021-26926 — CVSS 7.1 (high): A flaw was found in jasper before 2.0.25. An out of bounds read issue was found in jp2_decode function whic may lead to disclosure of…
CVE-2021-26927 — CVSS 5.5 (medium): A flaw was found in jasper before 2.0.25. A null pointer dereference in jp2_decode in jp2_dec.c may lead to program crash and denial of…
CVE-2021-27845 — CVSS 5.5 (medium): A Divide-by-zero vulnerability exists in JasPer Image Coding Toolkit 2.0 in jasper/src/libjasper/jpc/jpc_enc.c
CVE-2021-3443 — CVSS 5.5 (medium): A NULL pointer dereference flaw was found in the way Jasper versions before 2.0.27 handled component references in the JP2 image format…
CVE-2021-3467 — CVSS 5.5 (medium): A NULL pointer dereference flaw was found in the way Jasper versions before 2.0.26 handled component references in CDEF box in the JP2…