The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Race condition in the jas_stream_tmpfile function in libjasper/base/jas_stream.c in JasPer 1.900.1 allows local users to cause a denial of service (program exit) by creating the appropriate tmp.XXXXXXXXXX temporary file, which causes Jasper to exit. NOTE: this was originally reported as a symlink issue, but this was incorrect. NOTE: some vendors dispute the severity of this issue, but it satisfies CVE's requirements for inclusion.
|134477||EulerOS Virtualization for ARM 64 22.214.171.124 : jasper (EulerOS-SA-2020-1188)||Nessus||Huawei Local Security Checks|
|130699||EulerOS 2.0 SP5 : jasper (EulerOS-SA-2019-2237)||Nessus||Huawei Local Security Checks|
|41255||SuSE9 Security Update : jasper (YOU Patch Number 12295)||Nessus||SuSE Local Security Checks|
|39995||openSUSE Security Update : jasper (jasper-303)||Nessus||SuSE Local Security Checks|
|39552||Mandriva Linux Security Advisory : jasper (MDVSA-2009:142-1)||Nessus||Mandriva Local Security Checks|
|37359||Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : jasper vulnerabilities (USN-742-1)||Nessus||Ubuntu Local Security Checks|
|34982||openSUSE 10 Security Update : jasper (jasper-5771)||Nessus||SuSE Local Security Checks|
|34968||SuSE 10 Security Update : jasper (ZYPP Patch Number 5782)||Nessus||SuSE Local Security Checks|