VDB

GCVE-VVD-MAGEIA-2014-539

GCVE-VVD-MAGEIA-2014-539
Advisory Published
Vulnetix · Advisory published December 19, 2014
Updated jasper packages fix security vulnerabilities: A double free flaw was found in the way JasPer parsed ICC color profiles in JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code (CVE-2014-8137). A heap-based buffer overflow flaw was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code (CVE-2014-8138).
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiajasper0 (affected), 1.900.1-15.2.mga4 (unaffected)

References

Updated jasper packages fix security vulnerabilities
advisory
Updated jasper packages fix security vulnerabilities
issue
Updated jasper packages fix security vulnerabilities
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›