Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-17480

Опубликовано: 08 дек. 2017
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 7.5
CVSS3: 9.8

Описание

In OpenJPEG 2.3.0, a stack-based buffer overflow was discovered in the pgxtovolume function in jp3d/convert.c. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution.

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-apps/xenial

not-affected

code not present
esm-infra-legacy/trusty

not-affected

code not present
esm-infra/focal

DNE

focal

DNE

jammy

DNE

kinetic

DNE

precise/esm

DNE

trusty

not-affected

code not present

Показывать по

РелизСтатусПримечание
artful

ignored

end of life
bionic

released

2.3.0-2build0.18.04.1
cosmic

ignored

end of life
devel

not-affected

2.5.0-1
disco

ignored

end of life
esm-apps/bionic

released

2.3.0-2build0.18.04.1
esm-apps/xenial

released

2.1.2-1.1+deb9u3build0.16.04.1
esm-infra-legacy/trusty

DNE

esm-infra/focal

not-affected

2.3.1-1ubuntu4
focal

not-affected

2.3.1-1ubuntu4

Показывать по

Ссылки на источники

EPSS

Процентиль: 88%
0.03921
Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-17480

CVSS3: 5.3
redhat
около 8 лет назад

In OpenJPEG 2.3.0, a stack-based buffer overflow was discovered in the pgxtovolume function in jp3d/convert.c. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution.

nvd логотип

CVE-2017-17480

CVSS3: 9.8
nvd
около 8 лет назад

In OpenJPEG 2.3.0, a stack-based buffer overflow was discovered in the pgxtovolume function in jp3d/convert.c. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution.

debian логотип

CVE-2017-17480

CVSS3: 9.8
debian
около 8 лет назад

In OpenJPEG 2.3.0, a stack-based buffer overflow was discovered in the ...

github логотип

GHSA-j9x9-9h4c-f6v6

CVSS3: 9.8
github
больше 3 лет назад

In OpenJPEG 2.3.0, a stack-based buffer overflow was discovered in the pgxtovolume function in jp3d/convert.c. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution.

fstec логотип

BDU:2019-01566

CVSS3: 9.8
fstec
больше 8 лет назад

Уязвимость функции pgxtovolume библиотеки для кодирования/декодирования изображений OpenJPEG, связанная с записью за границы буфера данных, позволяющая нарушителю вызвать отказ в обслуживании и выполнить произвольный код

EPSS

Процентиль: 88%
0.03921
Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3