Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2008-3522HistoryOct 02, 2008 - 6:18 p.m.
CVE-2008-3522
2008-10-0218:18:05
Debian Security Bug Tracker
security-tracker.debian.org
14
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.009 Low
EPSS
Percentile
82.9%
Buffer overflow in the jas_stream_printf function in libjasper/base/jas_stream.c in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via vectors related to the mif_hdr_put function and use of vsprintf.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | ghostscript | < 8.64~dfsg-2 | ghostscript_8.64~dfsg-2_all.deb |
| Debian | 11 | all | ghostscript | < 8.64~dfsg-2 | ghostscript_8.64~dfsg-2_all.deb |
| Debian | 999 | all | ghostscript | < 8.64~dfsg-2 | ghostscript_8.64~dfsg-2_all.deb |
| Debian | 13 | all | ghostscript | < 8.64~dfsg-2 | ghostscript_8.64~dfsg-2_all.deb |
| Debian | 12 | all | netpbm-free | < 2:11.01.00-2 | netpbm-free_2:11.01.00-2_all.deb |
| Debian | 11 | all | netpbm-free | < 2:10.0-15.4 | netpbm-free_2:10.0-15.4_all.deb |
| Debian | 999 | all | netpbm-free | < 2:11.06.01-2 | netpbm-free_2:11.06.01-2_all.deb |
| Debian | 13 | all | netpbm-free | < 2:11.06.01-2 | netpbm-free_2:11.06.01-2_all.deb |
Related
securityvulns
securityvulns
JasPer multiple security vulnerabilities
2008-12-17 00:00:00
[ GLSA 200812-18 ] JasPer: User-assisted execution of arbitrary code
2008-12-17 00:00:00
Jasper library multiplesecurity vulnerabilities
2009-03-20 00:00:00
cve
cve
CVE-2008-3522
2008-10-02 18:18:05
CVE-2008-3517
2022-10-03 16:13:42
cvelist
cvelist
CVE-2008-3522
2008-10-02 18:00:00
nvd
nvd
CVE-2008-3522
2008-10-02 18:18:05
CVE-2008-3517
2009-03-26 10:12:10
prion
prion
Buffer overflow
2008-10-02 18:18:00
Design/Logic Flaw
2009-03-26 10:12:00
ubuntucve
ubuntucve
CVE-2008-3522
2008-10-02 00:00:00
openvas
openvas
Fedora Core 11 FEDORA-2009-10761 (jasper)
2009-11-11 00:00:00
Mandrake Security Advisory MDVSA-2009:165 (ghostscript)
2009-08-17 00:00:00
Fedora Core 10 FEDORA-2009-10737 (jasper)
2009-11-11 00:00:00
gentoo
gentoo
JasPer: User-assisted execution of arbitrary code
2008-12-16 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: jasper-1.900.1-13.fc11
2009-10-27 06:43:29
[SECURITY] Fedora 10 Update: jasper-1.900.1-13.fc10
2009-10-27 06:37:10
nessus
nessus
GLSA-200812-18 : JasPer: User-assisted execution of arbitrary code
2008-12-17 00:00:00
Mandriva Linux Security Advisory : ghostscript (MDVSA-2009:144)
2009-06-28 00:00:00
Fedora 11 : jasper-1.900.1-13.fc11 (2009-10761)
2009-10-28 00:00:00
ubuntu
ubuntu
JasPer vulnerabilities
2009-03-19 00:00:00
Ghostscript vulnerabilities
2012-01-04 00:00:00
freebsd
freebsd
jasper -- buffer overflow
2011-12-09 00:00:00
debian
debian
[SECURITY] [DSA 2080-1] New ghostscript packages fix several vulnerabilities
2010-08-01 01:24:55
osv
osv
ghostscript - several vulnerabilities
2010-08-01 00:00:00
slackware
slackware
[slackware-security] jasper
2015-10-29 22:48:48
redhat
redhat
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.009 Low
EPSS
Percentile
82.9%
Related for DEBIANCVE:CVE-2008-3522