CVE-2024-31744
EUVD-2024-2961719.04.2024, 13:15
In Jasper 4.2.2, the jpc_streamlist_remove function in src/libjasper/jpc/jpc_dec.c:2407 has an assertion failure vulnerability, allowing attackers to cause a denial of service attack through a specific image file.Enginsight
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| jasper_project | jasper | 4.2.2 | ADP |
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| libjasper-devel |
| ||||||||||||||||||||||||
| libjasper1 |
| ||||||||||||||||||||||||
| libjasper1-32bit |
| ||||||||||||||||||||||||
| libjasper4 |
| ||||||||||||||||||||||||
| libjasper7 |
|
Common Weakness Enumeration