CVE-2018-19542 in Ubuntu

CVE-2018-19542

Priority

Description

An issue was discovered in JasPer 2.0.14. There is a NULL pointer
dereference in the function jp2_decode in libjasper/jp2/jp2_dec.c, leading
to a denial of service.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19542

Bugs

https://github.com/mdadams/jasper/issues/182

Notes

mdeslaur> as of 2019-01-17, no upstream fix

Package

Source: jasper (LP Ubuntu Debian)

Upstream:	needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 LTS (Trusty Tahr):	deferred (2019-01-17)
Ubuntu 16.04 LTS (Xenial Xerus):	deferred (2019-01-17)
Ubuntu 18.04 LTS (Bionic Beaver):	DNE
Ubuntu 18.10 (Cosmic Cuttlefish):	DNE
Ubuntu 19.04 (Disco Dingo):	DNE

More Information

Mitre
NVD
Launchpad
Debian

Updated: 2019-01-17 20:14:28 UTC (commit 41ffe32c6a8936c6b9e1c180ee5cf3e5c6f1f684)