Lucene search

Veracode Vulnerability DatabaseVERACODE:26985

HistorySep 21, 2020 - 6:28 a.m.

Denial Of Service (DoS)

2020-09-2106:28:52

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.002 Low

EPSS

Percentile

55.8%

JSON

jbig2dec is vulnerable to denial of service (DoS). The vulnerability exists through a heap based buffer overflow in the jbig2_decode_gray_scale_image function,.

CPENameOperatorVersion
jbig2dec:trustyeq0.11+20120125-1ubuntu1
jbig2dec:trustyeq0.11+20120125-1ubuntu1

CPE	Name	Operator	Version
	jbig2dec:trusty	eq	0.11+20120125-1ubuntu1
	jbig2dec:trusty	eq	0.11+20120125-1ubuntu1

References

git.ghostscript.com/?p=jbig2dec.git;a=commit;h=e698d5c11d27212aa1098bc5b1673a3378563092

www.securityfocus.com/bid/97095

bugs.ghostscript.com/show_bug.cgi?id=697457

bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-9601

security.gentoo.org/glsa/201706-24

www.debian.org/security/2017/dsa-3817

0.002 Low

EPSS

Percentile

55.8%

JSON

Related for VERACODE:26985