CVE-2017-6850

Опубликовано: 25 янв. 2017

Источник: redhat

CVSS3: 7

CVSS2: 5.1

Описание

The jp2_cdef_destroy function in jp2_cod.c in JasPer before 2.0.13 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted image.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	netpbm	Not affected
Red Hat Enterprise Linux 6	jasper	Not affected
Red Hat Enterprise Linux 7	jasper	Not affected
Red Hat Enterprise Virtualization 3	mingw-virt-viewer	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-476

https://bugzilla.redhat.com/show_bug.cgi?id=1434458jasper: uninitialized pointer use in jp2_cdef_destroy()

7 High

CVSS3

5.1 Medium

CVSS2

Связанные уязвимости

CVE-2017-6850

CVSS3: 5.5

ubuntu

почти 9 лет назад

The jp2_cdef_destroy function in jp2_cod.c in JasPer before 2.0.13 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted image.

CVE-2017-6850

CVSS3: 5.5

nvd

почти 9 лет назад

The jp2_cdef_destroy function in jp2_cod.c in JasPer before 2.0.13 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted image.

CVE-2017-6850

CVSS3: 5.5

debian

почти 9 лет назад

The jp2_cdef_destroy function in jp2_cod.c in JasPer before 2.0.13 all ...

GHSA-4jr4-j3wj-73cj

CVSS3: 5.5

github

больше 3 лет назад

The jp2_cdef_destroy function in jp2_cod.c in JasPer before 2.0.13 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted image.

openSUSE-SU-2017:1034-1

suse-cvrf

почти 9 лет назад

Security update for jasper

7 High

CVSS3

5.1 Medium

CVSS2