Volerion logoVolerion
Volerion logoVolerion

JasPer Null Pointer Dereference Vulnerability in Image Color Space Conversion

Vulnerability

A null pointer dereference vulnerability has been identified in JasPer versions through 4.2.5. The issue arises in the image color space conversion function 'jas_image_chclrspc' within 'src/libjasper/base/jas_image.c'. When the function processes malformed image files, it can receive a null pointer instead of a valid image object. This leads to an immediate segmentation fault, causing the application to crash. The vulnerability can be exploited locally, and a proof-of-concept exploit is available.

Impact

Exploitation of this vulnerability leads to a segmentation fault, causing the application to crash.

Reproduction

The vulnerability can be reproduced by using the JasPer command-line tool to process a malformed image file with the BMP output format and the color space conversion option. This can be done by executing the command './jasper --output-format bmp --cmptno ppm -S --input POC_jasper_null_pointer_dereference', where 'POC_jasper_null_pointer_dereference' is the crafted image file that triggers the vulnerability.

Remediation

Users are advised to update to JasPer version 4.2.8, where this vulnerability has been fixed.

Added: Aug 11, 2025, 7:17 AM
Updated: Aug 11, 2025, 7:17 AM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
2.5
exploitability
6.0
remediation
7.7
relevance
0.3
threat
6.4
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.