Lucene search
Gentoo FoundationMGASA-2024-0144HistoryApr 25, 2024 - 7:00 p.m.
Updated jasper packages fix security vulnerability
2024-04-2519:00:30
Gentoo Foundation
advisories.mageia.org
12
jasper packages
cve-2024-31744
denial of service
vulnerability
assertion failure
jpc_streamlist_remove
unix
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.3 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.0%
CVE-2024-31744: Fixed denial of service through assertion failure in jpc_streamlist_remove()
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 9 | noarch | jasper | < 3.0.6-1.1 | jasper-3.0.6-1.1.mga9 |
References
Related
veracode
veracode
Assertion Failure
2024-04-22 06:14:10
osv
osv
CVE-2024-31744
2024-04-19 13:15:13
cvelist
cvelist
CVE-2024-31744
2024-04-19 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:1396-1)
2024-05-07 00:00:00
Mageia: Security Advisory (MGASA-2024-0144)
2024-04-26 00:00:00
nessus
nessus
SUSE SLES12 Security Update : jasper (SUSE-SU-2024:1396-1)
2024-04-24 00:00:00
ubuntucve
ubuntucve
CVE-2024-31744
2024-04-19 00:00:00
nvd
nvd
CVE-2024-31744
2024-04-19 13:15:13
cve
cve
CVE-2024-31744
2024-04-19 13:15:13
cbl_mariner
cbl_mariner
CVE-2024-31744 affecting package jasper for versions less than 4.2.1-2
2024-05-31 18:55:08
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.3 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.0%
Related for MGASA-2024-0144