Dgh05T

Name of the Vulnerable Software and Affected Versions: jasper versions prior to 2.0.25 Description: A flaw was found in the jp2 decode function, which may lead to disclosure of information or program crash due to an out of bounds read issue. Recommendations: For versions prior to 2.0.25, update to version 2.0.25 or later to resolve the issue. As a temporary workaround, consider restricting access to the jp2 decode function until a patch is available.

Name of the Vulnerable Software and Affected Versions: jasper versions prior to 2.0.25 Description: A flaw was found in the jasper software, where a null pointer dereference in `jp2 decode` in `jp2 dec.c` may lead to a program crash and denial of service. Recommendations: For versions prior to 2.0.25, update to version 2.0.25 or later to resolve the issue. As a temporary workaround, consider restricting access to the `jp2 decode` function in `jp2 dec.c` to minimize the risk of exploitation.