CVE-2021-26927

Опубликовано: 29 янв. 2021

Источник: redhat

CVSS3: 5.5

EPSS Низкий

Описание

A flaw was found in jasper before 2.0.25. A null pointer dereference in jp2_decode in jp2_dec.c may lead to program crash and denial of service.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	jasper	Out of support scope
Red Hat Enterprise Linux 7	jasper	Out of support scope
Red Hat Enterprise Linux 9	jasper	Not affected
Red Hat Enterprise Linux 8	jasper	Fixed	RHSA-2021:4235	09.11.2021

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-476

https://bugzilla.redhat.com/show_bug.cgi?id=1921428jasper: NULL pointer dereference in jp2_decode() in jp2_dec.c

EPSS

Процентиль: 24%

0.00082

Низкий

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2021-26927

CVSS3: 5.5

ubuntu

почти 5 лет назад

A flaw was found in jasper before 2.0.25. A null pointer dereference in jp2_decode in jp2_dec.c may lead to program crash and denial of service.

CVE-2021-26927

CVSS3: 5.5

nvd

почти 5 лет назад

A flaw was found in jasper before 2.0.25. A null pointer dereference in jp2_decode in jp2_dec.c may lead to program crash and denial of service.

CVE-2021-26927

CVSS3: 5.5

msrc

около 4 лет назад

A flaw was found in jasper before 2.0.25. A null pointer dereference in jp2_decode in jp2_dec.c may lead to program crash and denial of service.

CVE-2021-26927

CVSS3: 5.5

debian

почти 5 лет назад

A flaw was found in jasper before 2.0.25. A null pointer dereference i ...

GHSA-9768-8435-chr8

github

больше 3 лет назад

A flaw was found in jasper before 2.0.25. A null pointer dereference in jp2_decode in jp2_dec.c may lead to program crash and denial of service.

EPSS

Процентиль: 24%

0.00082

Низкий

5.5 Medium

CVSS3