What the vulnerability does

01Description

A NULL pointer dereference flaw was found in the way Jasper versions before 2.0.27 handled component references in the JP2 image format decoder. A specially crafted JP2 image file could cause an application using the Jasper library to crash when opened.

Key dates

02Disclosure timeline

March 25, 2021 CVE published
August 3, 2024 Record updated