virus logo FortiClient Vulnerability

Security Vulnerabilities fixed in jasper RHSA-2021:4235

description-logoDescription

JasPer is an implementation of Part 1 of the JPEG 2000 image compression standard. Security Fix(es): jasper: Heap-based buffer overflow in cp_create() in jpc_enc.c (CVE-2020-27828) jasper: Heap-based buffer over-read in jp2_decode() in jp2_dec.c (CVE-2021-3272) jasper: Out of bounds read in jp2_decode() in jp2_dec.c (CVE-2021-26926) jasper: NULL pointer dereference in jp2_decode() in jp2_dec.c (CVE-2021-26927) jasper: Heap-based buffer overflow in cp_create() in jpc_enc.c (CVE-2020-27828) jasper: Heap-based buffer over-read in jp2_decode() in jp2_dec.c (CVE-2021-3272) jasper: Out of bounds read in jp2_decode() in jp2_dec.c (CVE-2021-26926) jasper: NULL pointer dereference in jp2_decode() in jp2_dec.c (CVE-2021-26927) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.5 Release Notes linked from the References section. SolutionFor details on how to apply this update, which includes the changes described in this advisory, refer to:https://access.redhat.com/articles/11258

affected-products-logoAffected Applications

jasper

CVE References

CVE-2021-26926 CVE-2021-26927 CVE-2021-3272 CVE-2020-27828

Other References

https://access.redhat.com/errata/RHSA-2021:4235
ID 69642
Created Nov 13, 2021
Description
Updated		 Dec 20, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Linux
Vendor RedHat
Patch auto
Application jasper