CVE-2018-19539

Опубликовано: 13 июл. 2018

Источник: redhat

CVSS3: 3.3

EPSS Низкий

Описание

An issue was discovered in JasPer 2.0.14. There is an access violation in the function jas_image_readcmpt in libjasper/base/jas_image.c, leading to a denial of service.

Отчет

This vulnerability was rated as LOW severity because it requires the victim to open a specially crafted file. While it doesn’t allow full system compromise, it can cause the application to crash temporarily.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	netpbm	Not affected
Red Hat Enterprise Linux 6	jasper	Will not fix
Red Hat Enterprise Linux 7	jasper	Fix deferred
Red Hat Enterprise Linux 8	jasper	Fix deferred
Red Hat Enterprise Linux 8	mingw-jasper	Fix deferred

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-125

https://bugzilla.redhat.com/show_bug.cgi?id=1658773jasper: access violation in jas_image_readcmpt() in jas_image.c

EPSS

Процентиль: 76%

0.00962

Низкий

3.3 Low

CVSS3

Связанные уязвимости

CVE-2018-19539

CVSS3: 6.5

ubuntu

около 7 лет назад

An issue was discovered in JasPer 2.0.14. There is an access violation in the function jas_image_readcmpt in libjasper/base/jas_image.c, leading to a denial of service.

CVE-2018-19539

CVSS3: 6.5

nvd

около 7 лет назад

An issue was discovered in JasPer 2.0.14. There is an access violation in the function jas_image_readcmpt in libjasper/base/jas_image.c, leading to a denial of service.

CVE-2018-19539

CVSS3: 6.5

debian

около 7 лет назад

An issue was discovered in JasPer 2.0.14. There is an access violation ...

GHSA-p8xp-97mv-85m7

CVSS3: 6.5

github

больше 3 лет назад

An issue was discovered in JasPer 2.0.14. There is an access violation in the function jas_image_readcmpt in libjasper/base/jas_image.c, leading to a denial of service.

openSUSE-SU-2019:1315-1

suse-cvrf

почти 7 лет назад

Security update for jasper

EPSS

Процентиль: 76%

0.00962

Низкий

3.3 Low

CVSS3