{"id":"DEBIAN-CVE-2011-4517","details":"The jpc_crg_getparms function in libjasper/jpc/jpc_cs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service (heap memory corruption), via a crafted component registration (CRG) marker segment in a JPEG2000 file.","modified":"2026-04-28T20:15:01.468033Z","published":"2011-12-15T03:57:34.277Z","upstream":["CVE-2011-4517"],"references":[{"type":"ADVISORY","url":"https://security-tracker.debian.org/tracker/CVE-2011-4517"}],"affected":[{"package":{"name":"ghostscript","ecosystem":"Debian:11","purl":"pkg:deb/debian/ghostscript?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"8.64~dfsg-2"}]}],"ecosystem_specific":{"urgency":"not yet assigned"},"database_specific":{"source":"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2011-4517.json"}},{"package":{"name":"ghostscript","ecosystem":"Debian:12","purl":"pkg:deb/debian/ghostscript?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"8.64~dfsg-2"}]}],"ecosystem_specific":{"urgency":"not yet assigned"},"database_specific":{"source":"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2011-4517.json"}},{"package":{"name":"ghostscript","ecosystem":"Debian:13","purl":"pkg:deb/debian/ghostscript?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"8.64~dfsg-2"}]}],"ecosystem_specific":{"urgency":"not yet assigned"},"database_specific":{"source":"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2011-4517.json"}},{"package":{"name":"ghostscript","ecosystem":"Debian:14","purl":"pkg:deb/debian/ghostscript?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"8.64~dfsg-2"}]}],"ecosystem_specific":{"urgency":"not yet assigned"},"database_specific":{"source":"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2011-4517.json"}}],"schema_version":"1.7.5"}