Описание
There is a reachable abort in the function jpc_dec_process_sot in libjasper/jpc/jpc_dec.c of JasPer 2.0.14 that will lead to a remote denial of service attack by triggering an unexpected jas_alloc2 return value, a different vulnerability than CVE-2017-13745.
Отчет
This flaw was found to be a duplicate of CVE-2017-13745. Please see https://access.redhat.com/security/cve/CVE-2017-13745 for information about affected products and security errata.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | netpbm | Not affected | ||
| Red Hat Enterprise Linux 6 | jasper | Not affected | ||
| Red Hat Enterprise Linux 7 | jasper | Not affected | ||
| Red Hat Enterprise Linux 8 | jasper | Not affected |
Показывать по
Дополнительная информация
EPSS
3.3 Low
CVSS3
Связанные уязвимости
There is a reachable abort in the function jpc_dec_process_sot in libjasper/jpc/jpc_dec.c of JasPer 2.0.14 that will lead to a remote denial of service attack by triggering an unexpected jas_alloc2 return value, a different vulnerability than CVE-2017-13745.
There is a reachable abort in the function jpc_dec_process_sot in libjasper/jpc/jpc_dec.c of JasPer 2.0.14 that will lead to a remote denial of service attack by triggering an unexpected jas_alloc2 return value, a different vulnerability than CVE-2017-13745.
There is a reachable abort in the function jpc_dec_process_sot in libj ...
EPSS
3.3 Low
CVSS3