Lucene search

K

Veracode Vulnerability DatabaseVERACODE:18011

HistoryMay 02, 2019 - 6:10 a.m.

Use-After-Free

2019-05-0206:10:47

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

9

0.001 Low

EPSS

Percentile

43.6%

JasPer is vulnerable to a use-after-free attacks. Incorrect decoding of certain JPEG 2000 image files allow remote attackers to cause application crash resulting in denial of service conditions. Affected component is JPEG 2000 Image Handler.

CPENameOperatorVersion
jaspereq1.900.1__15.el6_1.1
jaspereq1.900.1__16.el6_6.3
jaspereq1.900.1__15.el6
jaspereq1.900.1__29.el7
jaspereq1.900.1__16.el6_6.2

References

www.securityfocus.com/bid/94952

access.redhat.com/errata/RHSA-2017:1208

access.redhat.com/security/updates/classification/#important

bugzilla.redhat.com/show_bug.cgi?id=1406405

security.gentoo.org/glsa/201707-07

www.debian.org/security/2017/dsa-3827

0.001 Low

EPSS

Percentile

43.6%

Related for VERACODE:18011

osv3 redhatcve1 cvelist1 prion1 cve1 nvd1 ubuntucve1 debian2 openvas15 nessus23 archlinux1 gentoo1 suse3 cloudfoundry1 fedora2 ubuntu1 amazon1 centos1 ibm2 redhat1 oraclelinux1 mageia1