CVE-2025-8836 | JasPer up to 4.2.5 JPEG2000 Encoder jpc_enc.c jpc_floorlog2 assertion (Issue 401)

A vulnerability was found in JasPer up to 4.2.5 and classified as problematic. Affected by this issue is the function jpc_floorlog2 of the file src/libjasper/jpc/jpc_enc.c of the component JPEG2000 Encoder. The manipulation leads to reachable assertion.

This vulnerability is handled as CVE-2025-8836. The attack needs to be approached locally. Furthermore, there is an exploit available.

It is recommended to apply a patch to fix this issue.VulDB Recent EntriesRead More