Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-9389

Опубликовано: 23 мар. 2017
Источник: debian

Описание

The jpc_irct and jpc_iict functions in jpc_mct.c in JasPer before 1.900.14 allow remote attackers to cause a denial of service (assertion failure).

Пакеты

ПакетСтатусВерсия исправленияРелизТип
jasperremovedpackage

Примечания

  • Fix: https://github.com/mdadams/jasper/commit/dee11ec440d7908d1daf69f40a3324b27cf213ba

  • Testcase: https://github.com/asarubbo/poc/blob/master/00006-jasper-assert-jpc_irct

  • Testcase: https://github.com/asarubbo/poc/blob/master/00008-jasper-assert-jpc_iict

  • Negligible security impact

Связанные уязвимости

ubuntu логотип

CVE-2016-9389

CVSS3: 7.5
ubuntu
больше 8 лет назад

The jpc_irct and jpc_iict functions in jpc_mct.c in JasPer before 1.900.14 allow remote attackers to cause a denial of service (assertion failure).

redhat логотип

CVE-2016-9389

CVSS3: 5.5
redhat
около 9 лет назад

The jpc_irct and jpc_iict functions in jpc_mct.c in JasPer before 1.900.14 allow remote attackers to cause a denial of service (assertion failure).

nvd логотип

CVE-2016-9389

CVSS3: 7.5
nvd
больше 8 лет назад

The jpc_irct and jpc_iict functions in jpc_mct.c in JasPer before 1.900.14 allow remote attackers to cause a denial of service (assertion failure).

github логотип

GHSA-6rmq-5fq3-mxcg

CVSS3: 7.5
github
больше 3 лет назад

The jpc_irct and jpc_iict functions in jpc_mct.c in JasPer before 1.900.14 allow remote attackers to cause a denial of service (assertion failure).

suse-cvrf логотип

openSUSE-SU-2017:1960-1

suse-cvrf
больше 8 лет назад

Security update for jasper