CVE-2016-3616

Опубликовано: 30 мар. 2016

Источник: redhat

CVSS2: 6.8

EPSS Низкий

Описание

The cjpeg utility in libjpeg allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or execute arbitrary code via a crafted file.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	libjpeg	Will not fix
Red Hat Enterprise Linux 6	libjpeg-turbo	Will not fix
Red Hat Enterprise Virtualization 3	mingw-virt-viewer	Will not fix
Red Hat Enterprise Linux 7	libjpeg-turbo	Fixed	RHSA-2019:2052	06.08.2019

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-476

https://bugzilla.redhat.com/show_bug.cgi?id=1319661libjpeg: null pointer dereference in cjpeg

EPSS

Процентиль: 80%

0.01404

Низкий

6.8 Medium

CVSS2

Связанные уязвимости

CVE-2016-3616

CVSS3: 8.8

ubuntu

почти 9 лет назад

The cjpeg utility in libjpeg allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or execute arbitrary code via a crafted file.

CVE-2016-3616

CVSS3: 8.8

nvd

почти 9 лет назад

The cjpeg utility in libjpeg allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or execute arbitrary code via a crafted file.

CVE-2016-3616

CVSS3: 8.8

debian

почти 9 лет назад

The cjpeg utility in libjpeg allows remote attackers to cause a denial ...

GHSA-pj5x-cj5m-45mx

CVSS3: 8.8

github

больше 3 лет назад

The cjpeg utility in libjpeg allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or execute arbitrary code via a crafted file.

ELSA-2019-2052

oracle-oval

больше 6 лет назад

ELSA-2019-2052: libjpeg-turbo security update (MODERATE)

EPSS

Процентиль: 80%

0.01404

Низкий

6.8 Medium

CVSS2