CVE-2024-31744 | jasper up to 4.2.2 Image File jpc_dec.c jpc_streamlist_remove denial of service (Issue 381)

Posted by Angelo Barbosa | Apr 19, 2024 | CVE

A vulnerability, which was classified as problematic, was found in jasper up to 4.2.2. This affects the function jpc_streamlist_remove in the library src/libjasper/jpc/jpc_dec.c of the component Image File Handler. The manipulation leads to denial of service.

This vulnerability is uniquely identified as CVE-2024-31744. The attack needs to be approached within the local network. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-31744 | jasper up to 4.2.2 Image File jpc_dec.c jpc_streamlist_remove denial of service (Issue 381)

Related Posts

CVE-2024-29168 | Dell Secure Connect Gateway-Application prior 5.22.00.00 Internal Assets REST API sql injection (dsa-2024-181)

CVE-2023-28455 | Technitium up to 11.0.2 Forwarding Mode infinite loop

CVE-2024-0978 | My Private Site Plugin up to 3.0.14 on WordPress REST API information disclosure

CVE-2024-22233 | VMware Spring Framework 6.0.15/6.1.2 HTTP Request denial of service