Search CVE reports
1 – 10 of 112 results
CVE-2024-3325
Low priorityVulnerability in Jaspersoft JasperReport Servers.This issue affects JasperReport Servers: from 8.0.4 through 9.0.0.
1 affected package
jasperreports
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
jasperreports | Not in release | Not in release | Not in release | Needs evaluation | Needs evaluation |
CVE-2024-31744
Medium priorityIn Jasper 4.2.2, the jpc_streamlist_remove function in src/libjasper/jpc/jpc_dec.c:2407 has an assertion failure vulnerability, allowing attackers to cause a denial of service attack through a specific image file.
1 affected package
jasper
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
jasper | Not in release | Not in release | Not in release | — | Needs evaluation |
CVE-2023-51257
Medium priorityAn invalid memory write issue in Jasper-Software Jasper v.4.1.1 and before allows a local attacker to execute arbitrary code.
3 affected packages
jasper, netpbm-free, opencpn
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
jasper | Not in release | Not in release | Not in release | Ignored | Needs evaluation |
netpbm-free | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
opencpn | Needs evaluation | Needs evaluation | Needs evaluation | Ignored | Ignored |
CVE-2022-41563
Medium priorityThe Dashboard component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server - Developer Edition, TIBCO JasperReports Server for AWS Marketplace, TIBCO JasperReports Server...
1 affected package
jasperreports
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
jasperreports | — | Not in release | Not in release | Needs evaluation | Needs evaluation |
CVE-2022-41562
Medium priorityThe HTML escaping component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server - Community Edition, TIBCO JasperReports Server - Developer Edition, TIBCO JasperReports...
1 affected package
jasperreports
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
jasperreports | — | Not in release | Not in release | Needs evaluation | Needs evaluation |
CVE-2022-41561
Medium priorityThe JNDI Data Sources component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server - Community Edition, TIBCO JasperReports Server - Developer Edition, TIBCO JasperReports...
1 affected package
jasperreports
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
jasperreports | — | Not in release | Not in release | Needs evaluation | Needs evaluation |
CVE-2022-2963
Negligible priorityA vulnerability found in jasper. This security vulnerability happens because of a memory leak bug in function cmdopts_parse that can cause a crash or segmentation fault.
1 affected package
jasper
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
jasper | Not in release | Not in release | Not in release | — | Needs evaluation |
CVE-2022-40755
Low priorityJasPer 3.0.6 allows denial of service via a reachable assertion in the function inttobits in libjasper/base/jas_image.c.
1 affected package
jasper
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
jasper | — | Not in release | Not in release | Not in release | Vulnerable |
CVE-2022-22771
Medium priorityThe Server component of TIBCO Software Inc.'s TIBCO JasperReports Library, TIBCO JasperReports Library for ActiveMatrix BPM, TIBCO JasperReports Server, TIBCO JasperReports Server for AWS Marketplace, TIBCO JasperReports Server...
1 affected package
jasperreports
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
jasperreports | — | — | — | Needs evaluation | Needs evaluation |
CVE-2021-27845
Low priorityA Divide-by-zero vulnerability exists in JasPer Image Coding Toolkit 2.0 in jasper/src/libjasper/jpc/jpc_enc.c
1 affected package
jasper
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
jasper | Not in release | Not in release | Not in release | Not in release | Vulnerable |