Описание
JasPer 2.0.14 allows denial of service via a reachable assertion in the function jpc_abstorelstepsize in libjasper/jpc/jpc_enc.c.
Отчет
This vulnerability is rated as a moderate because it allows denial of service due to a reachable assertion in the jpc_abstorelstepsize function within libjasper/jpc/jpc_enc.c. Processing specially crafted input may trigger this issue, causing an application crash and affecting availability, it does not lead to code execution. The following products are now in Extended Life Phase of the support and maintenance life cycle.
- Red Hat Enterprise Linux 5
- Red Hat Enterprise Virtualization 3 The following products are now in Maintenance Phase 2 of the support and maintenance life cycle.
- Red Hat Enterprise Linux 6 This issue is not currently planned to be addressed in future updates of these products. For additional information, please refer to the Life Cycle and Update Policies: https://access.redhat.com/support/policy/update_policies/
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | netpbm | Will not fix | ||
| Red Hat Enterprise Linux 6 | jasper | Will not fix | ||
| Red Hat Enterprise Linux 7 | jasper | Will not fix | ||
| Red Hat Enterprise Linux 8 | jasper | Will not fix | ||
| Red Hat Enterprise Virtualization 3 | mingw-virt-viewer | Will not fix |
Показывать по
Дополнительная информация
Статус:
6.5 Medium
CVSS3
Связанные уязвимости
JasPer 2.0.14 allows denial of service via a reachable assertion in the function jpc_abstorelstepsize in libjasper/jpc/jpc_enc.c.
JasPer 2.0.14 allows denial of service via a reachable assertion in the function jpc_abstorelstepsize in libjasper/jpc/jpc_enc.c.
JasPer 2.0.14 allows denial of service via a reachable assertion in th ...
JasPer 2.0.14 allows denial of service via a reachable assertion in the function jpc_abstorelstepsize in libjasper/jpc/jpc_enc.c.
6.5 Medium
CVSS3