CVE-2016-9675

Опубликовано: 22 дек. 2016

Источник: debian

EPSS Низкий

Описание

openjpeg: A heap-based buffer overflow flaw was found in the patch for CVE-2013-6045. A crafted j2k image could cause the application to crash, or potentially execute arbitrary code.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
openjpeg	fixed	1.5.2-1		package
openjpeg	fixed	1.3+dfsg-4.8	wheezy	package
openjpeg	fixed	1.3+dfsg-4+squeeze3	squeeze	package

Примечания

Introduced as well a regression, cf. https://bugs.debian.org/734238

EPSS

Процентиль: 73%

0.00797

Низкий

Связанные уязвимости

CVE-2016-9675

CVSS3: 7.8

ubuntu

почти 9 лет назад

openjpeg: A heap-based buffer overflow flaw was found in the patch for CVE-2013-6045. A crafted j2k image could cause the application to crash, or potentially execute arbitrary code.

CVE-2016-9675

CVSS3: 7.5

redhat

около 9 лет назад

openjpeg: A heap-based buffer overflow flaw was found in the patch for CVE-2013-6045. A crafted j2k image could cause the application to crash, or potentially execute arbitrary code.

CVE-2016-9675

CVSS3: 7.8

nvd

почти 9 лет назад

openjpeg: A heap-based buffer overflow flaw was found in the patch for CVE-2013-6045. A crafted j2k image could cause the application to crash, or potentially execute arbitrary code.

GHSA-6xgj-8663-75f9

CVSS3: 7.8

github

больше 3 лет назад

openjpeg: A heap-based buffer overflow flaw was found in the patch for CVE-2013-6045. A crafted j2k image could cause the application to crash, or potentially execute arbitrary code.

ELSA-2017-0559

oracle-oval

больше 8 лет назад

ELSA-2017-0559: openjpeg security update (MODERATE)

EPSS

Процентиль: 73%

0.00797

Низкий