CVE-2016-8883

Опубликовано: 13 янв. 2017

Источник: debian

EPSS Низкий

Описание

The jpc_dec_tiledecode function in jpc_dec.c in JasPer before 1.900.8 allows remote attackers to cause a denial of service (assertion failure) via a crafted file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
jasper	removed			package

Примечания

https://github.com/mdadams/jasper/issues/32
https://github.com/mdadams/jasper/commit/33cc2cfa51a8d0fc3116d16cc1d8fc581b3f9e8d
Not suitable for code injection, hardly denial of service

EPSS

Процентиль: 59%

0.00379

Низкий

Связанные уязвимости

CVE-2016-8883

CVSS3: 5.5

ubuntu

почти 9 лет назад

The jpc_dec_tiledecode function in jpc_dec.c in JasPer before 1.900.8 allows remote attackers to cause a denial of service (assertion failure) via a crafted file.

CVE-2016-8883

CVSS3: 5.5

redhat

около 9 лет назад

The jpc_dec_tiledecode function in jpc_dec.c in JasPer before 1.900.8 allows remote attackers to cause a denial of service (assertion failure) via a crafted file.

CVE-2016-8883

CVSS3: 5.5

nvd

почти 9 лет назад

The jpc_dec_tiledecode function in jpc_dec.c in JasPer before 1.900.8 allows remote attackers to cause a denial of service (assertion failure) via a crafted file.

GHSA-h4ch-gxhv-gcc6

CVSS3: 5.5

github

больше 3 лет назад

The jpc_dec_tiledecode function in jpc_dec.c in JasPer before 1.900.8 allows remote attackers to cause a denial of service (assertion failure) via a crafted file.

SUSE-SU-2016:2776-1

suse-cvrf

около 9 лет назад

Security update for jasper

EPSS

Процентиль: 59%

0.00379

Низкий