Vulnerabilities > CVE-2018-18873 - NULL Pointer Dereference vulnerability in multiple products

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

nessus

NVD

Published: 2018-10-31

Updated: 2020-04-24

Summary

An issue was discovered in JasPer 2.0.14. There is a NULL pointer dereference in the function ras_putdatastd in ras/ras_enc.c.

Part	Description	Count
Application	Jasper_Project Jasper Project Jasper 2.0.14	1
OS	Canonical Canonical Ubuntu Linux 14.04 Canonical Ubuntu Linux 16.04	2
OS	Debian Debian Debian Linux 8.0	1
OS	Suse Suse Linux Enterprise Desktop 12 Suse Linux Enterprise Server 11 Suse Linux Enterprise Server 12	6

NASL family	Gentoo Local Security Checks
NASL id	GENTOO_GLSA-201908-03.NASL
description	The remote host is affected by the vulnerability described in GLSA-201908-03 (JasPer: Multiple vulnerabilities) Multiple vulnerabilities have been discovered in JasPer. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for details. Workaround : There is no known workaround at this time.
last seen	2020-06-01
modified	2020-06-02
plugin id	127561
published	2019-08-12
reporter	This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/127561
title	GLSA-201908-03 : JasPer: Multiple vulnerabilities