CVE-2025-8837 | JasPer up to 4.2.5 JPEG2000 File jpc_dec.c jpc_dec_dump use after free (402/403)

A vulnerability was found in JasPer up to 4.2.5. It has been classified as critical. This affects the function jpc_dec_dump of the file src/libjasper/jpc/jpc_dec.c of the component JPEG2000 File Handler. The manipulation leads to use after free.

This vulnerability is uniquely identified as CVE-2025-8837. An attack has to be approached locally. Furthermore, there is an exploit available.

It is recommended to apply a patch to fix this issue.VulDB Recent EntriesRead More