CVE-2018-9055

Опубликовано: 26 мар. 2018

Источник: redhat

CVSS3: 5.5

EPSS Низкий

Описание

JasPer 2.0.14 allows denial of service via a reachable assertion in the function jpc_firstone in libjasper/jpc/jpc_math.c.

Отчет

This vulnerability is rated as a Moderate vulnerability because it allows denial of service due to reachable asseration in jpc_firstone fundtion within libjasper/jpc/jpc_math.c. Exploiting this issue could cause an application crash when processing crafted input, this vulnerability affects the availability of application.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	netpbm	Will not fix
Red Hat Enterprise Linux 6	jasper	Will not fix
Red Hat Enterprise Linux 7	jasper	Will not fix
Red Hat Enterprise Linux 8	jasper	Will not fix
Red Hat Enterprise Virtualization 3	mingw-virt-viewer	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-617

https://bugzilla.redhat.com/show_bug.cgi?id=1561699jasper: reachable assertion in jpc_firstone() in jpc_math.c

EPSS

Процентиль: 63%

0.00454

Низкий

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2018-9055

CVSS3: 5.5

ubuntu

почти 8 лет назад

JasPer 2.0.14 allows denial of service via a reachable assertion in the function jpc_firstone in libjasper/jpc/jpc_math.c.

CVE-2018-9055

CVSS3: 5.5

nvd

почти 8 лет назад

JasPer 2.0.14 allows denial of service via a reachable assertion in the function jpc_firstone in libjasper/jpc/jpc_math.c.

CVE-2018-9055

CVSS3: 5.5

debian

почти 8 лет назад

JasPer 2.0.14 allows denial of service via a reachable assertion in th ...

openSUSE-SU-2018:1440-1

suse-cvrf

больше 7 лет назад

Security update for jasper

SUSE-SU-2018:1424-1

suse-cvrf

больше 7 лет назад

Security update for jasper

EPSS

Процентиль: 63%

0.00454

Низкий

5.5 Medium

CVSS3