CVE-2016-2089

Опубликовано: 08 фев. 2016

Источник: debian

Описание

The jas_matrix_clip function in jas_seq.c in JasPer 1.900.1 allows remote attackers to cause a denial of service (invalid read and application crash) via a crafted JPEG 2000 image.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
jasper	removed			package
jasper	no-dsa		squeeze	package

Примечания

https://github.com/mdadams/jasper/commit/c87ad330a8b8d6e5eb0065675601fdfae08ebaab

Связанные уязвимости

CVE-2016-2089

CVSS3: 6.5

ubuntu

почти 10 лет назад

The jas_matrix_clip function in jas_seq.c in JasPer 1.900.1 allows remote attackers to cause a denial of service (invalid read and application crash) via a crafted JPEG 2000 image.

CVE-2016-2089

CVSS3: 5.5

redhat

почти 10 лет назад

The jas_matrix_clip function in jas_seq.c in JasPer 1.900.1 allows remote attackers to cause a denial of service (invalid read and application crash) via a crafted JPEG 2000 image.

CVE-2016-2089

CVSS3: 6.5

nvd

почти 10 лет назад

The jas_matrix_clip function in jas_seq.c in JasPer 1.900.1 allows remote attackers to cause a denial of service (invalid read and application crash) via a crafted JPEG 2000 image.

GHSA-gx5x-gf3p-pr98

CVSS3: 6.5

github

больше 3 лет назад

The jas_matrix_clip function in jas_seq.c in JasPer 1.900.1 allows remote attackers to cause a denial of service (invalid read and application crash) via a crafted JPEG 2000 image.

SUSE-SU-2016:2776-1

suse-cvrf

около 9 лет назад

Security update for jasper