Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-9388

Опубликовано: 23 мар. 2017
Источник: debian
EPSS Низкий

Описание

The ras_getcmap function in ras_dec.c in JasPer before 1.900.14 allows remote attackers to cause a denial of service (assertion failure) via a crafted image file.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
jasperremovedpackage

Примечания

  • Fix: https://github.com/mdadams/jasper/commit/411a4068f8c464e883358bf403a3e25158863823

  • Testcase: https://github.com/asarubbo/poc/blob/master/00005-jasper-assert-ras_getcmap

  • Negligible security impact

EPSS

Процентиль: 50%
0.00263
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2016-9388

CVSS3: 5.5
ubuntu
больше 8 лет назад

The ras_getcmap function in ras_dec.c in JasPer before 1.900.14 allows remote attackers to cause a denial of service (assertion failure) via a crafted image file.

redhat логотип

CVE-2016-9388

CVSS3: 5.5
redhat
около 9 лет назад

The ras_getcmap function in ras_dec.c in JasPer before 1.900.14 allows remote attackers to cause a denial of service (assertion failure) via a crafted image file.

nvd логотип

CVE-2016-9388

CVSS3: 5.5
nvd
больше 8 лет назад

The ras_getcmap function in ras_dec.c in JasPer before 1.900.14 allows remote attackers to cause a denial of service (assertion failure) via a crafted image file.

github логотип

GHSA-cphr-j5f7-39x9

CVSS3: 5.5
github
больше 3 лет назад

The ras_getcmap function in ras_dec.c in JasPer before 1.900.14 allows remote attackers to cause a denial of service (assertion failure) via a crafted image file.

suse-cvrf логотип

openSUSE-SU-2017:1960-1

suse-cvrf
больше 8 лет назад

Security update for jasper

EPSS

Процентиль: 50%
0.00263
Низкий