CVE-2016-8654

Опубликовано: 01 авг. 2018

Источник: debian

EPSS Низкий

Описание

A heap-buffer overflow vulnerability was found in QMFB code in JPC codec caused by buffer being allocated with too small size. jasper versions before 2.0.0 are affected.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
jasper	removed			package

Примечания

Upstream bug: https://github.com/mdadams/jasper/issues/93
Upstream bug: https://github.com/mdadams/jasper/issues/94
https://github.com/mdadams/jasper/commit/4a59cfaf9ab3d48fca4a15c0d2674bf7138e3d1a

EPSS

Процентиль: 46%

0.00234

Низкий

Связанные уязвимости

CVE-2016-8654

CVSS3: 7.8

ubuntu

больше 7 лет назад

A heap-buffer overflow vulnerability was found in QMFB code in JPC codec caused by buffer being allocated with too small size. jasper versions before 2.0.0 are affected.

CVE-2016-8654

CVSS3: 7.8

redhat

почти 9 лет назад

A heap-buffer overflow vulnerability was found in QMFB code in JPC codec caused by buffer being allocated with too small size. jasper versions before 2.0.0 are affected.

CVE-2016-8654

CVSS3: 7.8

nvd

больше 7 лет назад

A heap-buffer overflow vulnerability was found in QMFB code in JPC codec caused by buffer being allocated with too small size. jasper versions before 2.0.0 are affected.

GHSA-fvh8-26m7-hp86

CVSS3: 7.8

github

больше 3 лет назад

A heap-buffer overflow vulnerability was found in QMFB code in JPC codec caused by buffer being allocated with too small size. jasper versions before 2.0.0 are affected.

openSUSE-SU-2017:0101-1

suse-cvrf

почти 9 лет назад

Security update for jasper

EPSS

Процентиль: 46%

0.00234

Низкий