CVE-2016-9388

The ras_getcmap function in ras_dec.c in JasPer before 1.900.14 allows remote attackers to cause a denial of service (assertion failure) via a crafted image file.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:jasper_project:jasper:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*

History

09 Sep 2024, 13:56

Type Values Removed Values Added
CPE cpe:2.3:a:jasper_project:jasper:1.900.14:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
cpe:2.3:a:jasper_project:jasper:*:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
References () http://www.securityfocus.com/bid/94371 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/94371 - Broken Link, Third Party Advisory, VDB Entry
References () https://access.redhat.com/errata/RHSA-2017:1208 - () https://access.redhat.com/errata/RHSA-2017:1208 - Third Party Advisory
References () https://usn.ubuntu.com/3693-1/ - () https://usn.ubuntu.com/3693-1/ - Third Party Advisory
CWE NVD-CWE-Other CWE-617
First Time Canonical
Canonical ubuntu Linux

Information

Published : 2017-03-23 18:59

Updated : 2024-09-09 13:56


NVD link : CVE-2016-9388

Mitre link : CVE-2016-9388

CVE.ORG link : CVE-2016-9388


JSON object : View

Products Affected

canonical

  • ubuntu_linux

jasper_project

  • jasper
CWE
CWE-617

Reachable Assertion