Описание
Integer overflow in libjasper/jpc/jpc_tsfb.c in JasPer 1.900.17 allows remote attackers to cause a denial of service (crash) via a crafted file.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | netpbm | Not affected | ||
| Red Hat Enterprise Linux 6 | jasper | Not affected | ||
| Red Hat Enterprise Linux 7 | jasper | Not affected | ||
| Red Hat Enterprise Virtualization 3 | mingw-virt-viewer | Not affected |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-190
https://bugzilla.redhat.com/show_bug.cgi?id=1416064jasper: Signed integer overflow in jpc_tsfb_getbands2() in jpc_tsfb.c
EPSS
Процентиль: 31%
0.00121
Низкий
2.5 Low
CVSS3
Связанные уязвимости
CVSS3: 5.5
ubuntu
почти 9 лет назад
Integer overflow in libjasper/jpc/jpc_tsfb.c in JasPer 1.900.17 allows remote attackers to cause a denial of service (crash) via a crafted file.
CVSS3: 5.5
nvd
почти 9 лет назад
Integer overflow in libjasper/jpc/jpc_tsfb.c in JasPer 1.900.17 allows remote attackers to cause a denial of service (crash) via a crafted file.
CVSS3: 5.5
debian
почти 9 лет назад
Integer overflow in libjasper/jpc/jpc_tsfb.c in JasPer 1.900.17 allows ...
CVSS3: 5.5
github
больше 3 лет назад
Integer overflow in libjasper/jpc/jpc_tsfb.c in JasPer 1.900.17 allows remote attackers to cause a denial of service (crash) via a crafted file.
EPSS
Процентиль: 31%
0.00121
Низкий
2.5 Low
CVSS3