suse · CVE-2015-5203

Quick triage

Priority: high Published: 2021-05-30 13:31:44 UTC Updated: 2026-04-18 18:15:33 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2015-5203 severity important: SUSE including 42 source package names (jasper-1.900.1-30.el7_3, jasper-1.900.14-3.1, …), 84 product×package rows across 56 product lines (Image SLES12-SP5-Azure-SAP-BYOS, Image SLES12-SP5-Azure-SAP-On-Demand, … (56 product lines)): Fixed 84.

Description:

Double free vulnerability in the jasper_image_stop_load function in JasPer 1.900.17 allows remote attackers to cause a denial of service (crash) via a crafted JPEG 2000 image file.

cvelogic Threat Intelligence