The ras_getcmap function in ras_dec.c in JasPer before 1.900.14 allows remote attackers to cause a denial of service (assertion failure) via a crafted image file.
History

Mon, 09 Sep 2024 14:15:00 +0000

Type Values Removed Values Added
First Time appeared Canonical
Canonical ubuntu Linux
Weaknesses NVD-CWE-Other
CPEs cpe:2.3:a:jasper_project:jasper:1.900.14:*:*:*:*:*:*:* cpe:2.3:a:jasper_project:jasper:*:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
Vendors & Products Canonical
Canonical ubuntu Linux
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-03-23T18:00:00

Updated: 2024-08-06T02:50:37.419Z

Reserved: 2016-11-17T00:00:00

Link: CVE-2016-9388

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-03-23T18:59:00.617

Modified: 2024-11-21T03:01:05.040

Link: CVE-2016-9388

cve-icon Redhat

Severity : Low

Publid Date: 2016-10-24T00:00:00Z

Links: CVE-2016-9388 - Bugzilla