CVE-2021-3467

NULL Pointer Dereference in conan/jasper

Identifier

CVE-2021-3467

Package Slug

conan/jasper

Vulnerability

NULL Pointer Dereference

Description

A NULL pointer dereference flaw was found in the way Jasper handled component references in CDEF box in the JP2 image format decoder. A specially crafted JP2 image file could cause an application using the Jasper library to crash when opened.

Affected Versions

All versions before 2.0.26

Solution

Upgrade to version 2.0.27 or above.

Last Modified

2021-04-01

source