VDB

GCVE-VVD-MAGEIA-2021-249

GCVE-VVD-MAGEIA-2021-249
Advisory Published
Vulnetix · Advisory published June 13, 2021
A NULL pointer dereference flaw was found in the way Jasper versions before 2.0.27 handled component references in the JP2 image format decoder. A specially crafted JP2 image file could cause an application using the Jasper library to crash when opened (CVE-2021-3443). A NULL pointer dereference flaw was found in the way Jasper versions before 2.0.26 handled component references in CDEF box in the JP2 image format decoder. A specially crafted JP2 image file could cause an application using the Jasper library to crash when opened (CVE-2021-3467).
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiajasper0 (affected), 2.0.27-1.mga7 (unaffected)
Mageiajasper0 (affected), 2.0.27-1.mga8 (unaffected)
Mageiamingw-jasper0 (affected), 2.0.27-1.mga8 (unaffected)

References

Updated jasper packages fix security vulnerabilities
advisory
Updated jasper packages fix security vulnerabilities
issue
Updated jasper packages fix security vulnerabilities
issue
Updated jasper packages fix security vulnerabilities
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›