Lucene search
Veracode Vulnerability DatabaseVERACODE:27143HistorySep 21, 2020 - 6:38 a.m.
Authorization Bypass
2020-09-2106:38:48
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.001 Low
EPSS
Percentile
46.9%
jbig2dec is vulnerable to authorization bypass. The vulnerability exists as out-of-bounds writes and reads can be caused through integer overflow in the jbig2_image_compose function in jbig2_image.c when parsing a .jb2 file.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jbig2dec:trusty | eq | 0.11-0.11+20120125-1ubuntu1 | |
| jbig2dec:trusty | eq | 0.11-0.11+20120125-1ubuntu1 |
Related
redhatcve
redhatcve
CVE-2017-7976
2017-04-20 09:48:24
debiancve
debiancve
CVE-2017-7976
2017-04-19 17:59:00
osv
osv
CVE-2017-7976
2017-04-19 17:59:00
jbig2dec - security update
2017-05-18 00:00:00
jbig2dec - security update
2017-05-15 00:00:00
ubuntucve
ubuntucve
CVE-2017-7976
2017-04-19 00:00:00
prion
prion
Integer overflow
2017-04-19 17:59:00
cvelist
cvelist
CVE-2017-7976
2017-04-19 17:00:00
cve
cve
CVE-2017-7976
2017-04-19 17:59:00
nvd
nvd
CVE-2017-7976
2017-04-19 17:59:00
nessus
nessus
Debian DLA-942-1 : jbig2dec security update
2017-05-16 00:00:00
Debian DSA-3855-1 : jbig2dec - security update
2017-05-19 00:00:00
GLSA-201708-10 : jbig2dec: User-assisted execution of arbitrary code
2017-08-28 00:00:00
fedora
fedora
[SECURITY] Fedora 26 Update: jbig2dec-0.13-3.fc26
2017-05-14 20:24:27
[SECURITY] Fedora 25 Update: jbig2dec-0.12-4.fc25
2017-05-19 23:05:29
[SECURITY] Fedora 26 Update: mupdf-1.10a-6.fc26
2017-05-14 20:24:34
openvas
openvas
Debian: Security Advisory (DLA-942-1)
2018-01-24 00:00:00
Fedora Update for jbig2dec FEDORA-2017-58170ecb09
2017-05-20 00:00:00
Debian Security Advisory DSA 3855-1 (jbig2dec - security update)
2017-05-18 00:00:00
debian
debian
[SECURITY] [DSA 3855-1] jbig2dec security update
2017-05-18 19:21:40
[SECURITY] [DLA 942-1] jbig2dec security update
2017-05-15 20:29:49
[SECURITY] [DSA 3855-1] jbig2dec security update
2017-05-18 19:21:40
gentoo
gentoo
jbig2dec: User-assisted execution of arbitrary code
2017-08-26 00:00:00
mageia
mageia
Updated jbig2dec packages fix security vulnerability
2017-07-13 12:10:46
ubuntu
ubuntu
jbig2dec vulnerabilities
2017-05-24 00:00:00