Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2014-9029
Description:Multiple off-by-one errors in the (1) jpc_dec_cp_setfromcox and (2) jpc_dec_cp_setfromrgn functions in jpc/jpc_dec.c in JasPer 1.900.1 and earlier allow remote attackers to execute arbitrary code via a crafted jp2 file, which triggers a heap-based buffer overflow.
Test IDs:  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2014-9029
BugTraq ID: 71476
Bugtraq: 20141204 [oCERT-2014-009] JasPer input sanitization errors (Google Search)
Debian Security Information: DSA-3089 (Google Search)
RedHat Security Advisories: RHSA-2014:2021
RedHat Security Advisories: RHSA-2015:0698
XForce ISS Database: jasper-cve20149029-bo(99125)

© 1998-2021 E-Soft Inc. All rights reserved.