CVE-2016-9557

Опубликовано: 12 нояб. 2016

Источник: redhat

CVSS3: 3.3

CVSS2: 4.3

Описание

Integer overflow in jas_image.c in JasPer before 1.900.25 allows remote attackers to cause a denial of service (application crash) via a crafted file.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	netpbm	Not affected
Red Hat Enterprise Linux 6	jasper	Not affected
Red Hat Enterprise Linux 7	jasper	Not affected
Red Hat Enterprise Virtualization 3	mingw-virt-viewer	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-190

https://bugzilla.redhat.com/show_bug.cgi?id=1398251jasper: signed integer overflow in jas_image_create()

3.3 Low

CVSS3

4.3 Medium

CVSS2

Связанные уязвимости

CVE-2016-9557

CVSS3: 5.5

ubuntu

почти 9 лет назад

Integer overflow in jas_image.c in JasPer before 1.900.25 allows remote attackers to cause a denial of service (application crash) via a crafted file.

CVE-2016-9557

CVSS3: 5.5

nvd

почти 9 лет назад

Integer overflow in jas_image.c in JasPer before 1.900.25 allows remote attackers to cause a denial of service (application crash) via a crafted file.

CVE-2016-9557

CVSS3: 5.5

debian

почти 9 лет назад

Integer overflow in jas_image.c in JasPer before 1.900.25 allows remot ...

GHSA-q4c4-wm35-x9g8

CVSS3: 5.5

github

больше 3 лет назад

Integer overflow in jas_image.c in JasPer before 1.900.25 allows remote attackers to cause a denial of service (application crash) via a crafted file.

SUSE-SU-2020:2690-1

suse-cvrf

больше 5 лет назад

Security update for jasper

3.3 Low

CVSS3

4.3 Medium

CVSS2