CVE-2011-4516

Published: 14 December 2011

Heap-based buffer overflow in the jpc_cox_getcompparms function in libjasper/jpc/jpc_cs.c in JasPer 1.900.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted numrlvls value in a coding style default (COD) marker segment in a JPEG2000 file.

Priority

Medium

Status

Package Release Status
ghostscript
Launchpad, Ubuntu, Debian
Upstream Needs triage

jasper
Launchpad, Ubuntu, Debian
Upstream Needs triage

Patches:
Vendor: https://rhn.redhat.com/errata/RHSA-2011-1807.html
netpbm-free
Launchpad, Ubuntu, Debian
Upstream Needs triage

Patches:
Vendor: https://rhn.redhat.com/errata/RHSA-2011-1811.html

Notes

AuthorNote
jdstrand
test images can be found at http://www.ece.uvic.ca/~frodo/jasper/
mdeslaur
ghostscript has embedded jasper in maverick and older
Debian's netpbm-free doesn't contain jasper

References