CVE-2021-26926

Опубликовано: 29 янв. 2021

Источник: redhat

CVSS3: 5.5

EPSS Низкий

Описание

A flaw was found in jasper before 2.0.25. An out of bounds read issue was found in jp2_decode function whic may lead to disclosure of information or program crash.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	jasper	Out of support scope
Red Hat Enterprise Linux 7	jasper	Out of support scope
Red Hat Enterprise Linux 9	jasper	Not affected
Red Hat Enterprise Linux 8	jasper	Fixed	RHSA-2021:4235	09.11.2021

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-125

https://bugzilla.redhat.com/show_bug.cgi?id=1921426jasper: Out of bounds read in jp2_decode() in jp2_dec.c

EPSS

Процентиль: 31%

0.00114

Низкий

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2021-26926

CVSS3: 7.1

ubuntu

почти 5 лет назад

A flaw was found in jasper before 2.0.25. An out of bounds read issue was found in jp2_decode function whic may lead to disclosure of information or program crash.

CVE-2021-26926

CVSS3: 7.1

nvd

почти 5 лет назад

A flaw was found in jasper before 2.0.25. An out of bounds read issue was found in jp2_decode function whic may lead to disclosure of information or program crash.

CVE-2021-26926

CVSS3: 7.1

msrc

около 4 лет назад

A flaw was found in jasper before 2.0.25. An out of bounds read issue was found in jp2_decode function whic may lead to disclosure of information or program crash.

CVE-2021-26926

CVSS3: 7.1

debian

почти 5 лет назад

A flaw was found in jasper before 2.0.25. An out of bounds read issue ...

GHSA-xx8c-rpq7-pg6p

github

больше 3 лет назад

A flaw was found in jasper before 2.0.25. An out of bounds read issue was found in jp2_decode function whic may lead to disclosure of information or program crash.

EPSS

Процентиль: 31%

0.00114

Низкий

5.5 Medium

CVSS3