CVE-2024-31744 | jasper up to 4.2.2 Image File jpc_dec.c jpc_streamlist_remove denial of service (Issue 381)

Posted by Angelo Barbosa | Apr 19, 2024 | CVE

A vulnerability, which was classified as problematic, was found in jasper up to 4.2.2. This affects the function jpc_streamlist_remove in the library src/libjasper/jpc/jpc_dec.c of the component Image File Handler. The manipulation leads to denial of service.

This vulnerability is uniquely identified as CVE-2024-31744. The attack needs to be approached within the local network. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-31744 | jasper up to 4.2.2 Image File jpc_dec.c jpc_streamlist_remove denial of service (Issue 381)

Related Posts

CVE-2023-6871 | Mozilla Firefox up to 120 Protocol denial of service

CVE-2024-23590 | Apache Kylin up to 4.x Web Interface session fixiation

CVE-2023-40262 | Atos Unify OpenScape Voice Trace Manager prior V8 R0.9.11 Administration cross site scripting

CVE-2022-25480 | Realtek RtsPer Driver for PCIe Card Reader Kernel Memory RtsPer.sys buffer overflow