CVE-2015-5203

Опубликовано: 02 авг. 2017

Источник: debian

EPSS Низкий

Описание

Double free vulnerability in the jasper_image_stop_load function in JasPer 1.900.17 allows remote attackers to cause a denial of service (crash) via a crafted JPEG 2000 image file.

Пакеты

Пакет	Статус	Релиз	Тип
jasper	removed		package
jasper	no-dsa	wheezy	package
jasper	no-dsa	squeeze	package

Примечания

Analysis/More information/Fixing commits: https://bugzilla.redhat.com/show_bug.cgi?id=1254242#c11

EPSS

Процентиль: 59%

0.00381

Низкий

Связанные уязвимости

CVE-2015-5203

CVSS3: 5.5

ubuntu

больше 8 лет назад

Double free vulnerability in the jasper_image_stop_load function in JasPer 1.900.17 allows remote attackers to cause a denial of service (crash) via a crafted JPEG 2000 image file.

CVE-2015-5203

CVSS3: 7

redhat

около 10 лет назад

Double free vulnerability in the jasper_image_stop_load function in JasPer 1.900.17 allows remote attackers to cause a denial of service (crash) via a crafted JPEG 2000 image file.

CVE-2015-5203

CVSS3: 5.5

nvd

больше 8 лет назад

Double free vulnerability in the jasper_image_stop_load function in JasPer 1.900.17 allows remote attackers to cause a denial of service (crash) via a crafted JPEG 2000 image file.

GHSA-8p3p-rp99-mrhw

CVSS3: 5.5

github

больше 3 лет назад

Double free vulnerability in the jasper_image_stop_load function in JasPer 1.900.17 allows remote attackers to cause a denial of service (crash) via a crafted JPEG 2000 image file.

SUSE-SU-2016:2776-1

suse-cvrf

около 9 лет назад

Security update for jasper

EPSS

Процентиль: 59%

0.00381

Низкий