The jpc_dec_process_siz function in libjasper/jpc/jpc_dec.c in JasPer before 1.900.4 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted XRsiz value in a BMP image to the imginfo command.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2017-02-15T19:00:00
Updated: 2024-08-06T02:27:41.287Z
Reserved: 2016-10-15T00:00:00
Link: CVE-2016-8691
Vulnrichment
No data.
NVD
Status : Modified
Published: 2017-02-15T19:59:00.797
Modified: 2024-11-21T02:59:51.510
Link: CVE-2016-8691
Redhat