CVE-2018-19543

Published: Nov 26, 2018
Updated: Apr 13, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2018-19543" target="_blank" rel="noopener"> CVE-2018-19543
Severity: High
Exploit:

An issue was discovered in JasPer 2.0.14. There is a heap-based buffer over-read of size 8 in the function jp2_decode in libjasper/jp2/jp2_dec.c.

CVSS v3:

CVSS v2:

CWEs:

Software	From	Fixed in
jasper_project / jasper	2.0.14	2.0.14.x
canonical / ubuntu_linux	16.04	16.04.x
canonical / ubuntu_linux	14.04	14.04.x
debian / debian_linux	8.0	8.0.x
suse / linux_enterprise_server	11-sp4	11-sp4.x
suse / linux_enterprise_server	11-sp3	11-sp3.x
suse / linux_enterprise_server	12-sp1	12-sp1.x
suse / linux_enterprise_server	12-sp2	12-sp2.x
suse / linux_enterprise_desktop	12-sp3	12-sp3.x
suse / linux_enterprise_desktop	12-sp4	12-sp4.x