CVE-2008-3520: jasper: multiple integer overflows in jas_alloc calls

Severity: Critical

CVSS Score: 9.3

Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.