Key Information Summary Vulnerability Overview Vulnerability Type: Null Pointer Dereference Affected Program: jasper (image processing library) Crash Type: SIGSEGV (signal 11) Version: jasper 2.0.25 Root Cause: In the function, when processing a maliciously formatted image file with specific command-line options, the function receives a null image pointer and attempts to dereference it, causing an immediate segmentation fault. Technical Analysis AddressSanitizer Report: Details the write operation at an invalid address. GDB Stack Trace Reference: Provides call stack information at the time of crash. Vulnerability Mechanism: - Critical Issue: is a NULL pointer. - Root Cause Analysis: 1. Image Load Failure: Malicious input file causes image loading to fail, returning NULL. 2. Missing Validation: The main function does not check for null pointer dereference before passing the image pointer to the color space conversion function. 3. Null Pointer Access: function attempts to access fields of without null checking. 4. Crash Trigger: Accessing triggers the exception. Vulnerable Code Context Displays the vulnerable code snippet where member variables of are accessed when is NULL. Reproduction Steps Includes command-line test instructions and expected behavior description, detailing how to trigger the vulnerability. Distinction from Assertion Failure Vulnerability Details key differences from another reported assertion failure vulnerability, including signal type, location, function, root cause, and triggering options. Proof of Concept Provides a proof-of-concept (PoC) file to demonstrate the vulnerability. Acknowledgments Lists the researchers who discovered and reported this vulnerability.