CVE-2016-9591

Опубликовано: 09 мар. 2018

Источник: debian

EPSS Низкий

Описание

JasPer before version 2.0.12 is vulnerable to a use-after-free in the way it decodes certain JPEG 2000 image files resulting in a crash on the application using JasPer.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
jasper	removed			package

Примечания

https://github.com/mdadams/jasper/issues/105
Fixed by: https://github.com/mdadams/jasper/commit/03fe49ab96bf65fea784cdc256507ea88267fc7c

EPSS

Процентиль: 64%

0.00479

Низкий

Связанные уязвимости

CVE-2016-9591

CVSS3: 5.5

ubuntu

больше 7 лет назад

JasPer before version 2.0.12 is vulnerable to a use-after-free in the way it decodes certain JPEG 2000 image files resulting in a crash on the application using JasPer.

CVE-2016-9591

CVSS3: 7

redhat

почти 9 лет назад

JasPer before version 2.0.12 is vulnerable to a use-after-free in the way it decodes certain JPEG 2000 image files resulting in a crash on the application using JasPer.

CVE-2016-9591

CVSS3: 5.5

nvd

больше 7 лет назад

JasPer before version 2.0.12 is vulnerable to a use-after-free in the way it decodes certain JPEG 2000 image files resulting in a crash on the application using JasPer.

GHSA-j57x-xc7m-f43w

CVSS3: 5.5

github

больше 3 лет назад

JasPer before version 2.0.12 is vulnerable to a use-after-free in the way it decodes certain JPEG 2000 image files resulting in a crash on the application using JasPer.

openSUSE-SU-2017:0101-1

suse-cvrf

почти 9 лет назад

Security update for jasper

EPSS

Процентиль: 64%

0.00479

Низкий