Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2007-2721HistoryMay 16, 2007 - 8:30 p.m.
CVE-2007-2721
2007-05-1620:30:00
Debian Security Bug Tracker
security-tracker.debian.org
11
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.108 Low
EPSS
Percentile
95.0%
The jpc_qcx_getcompparms function in jpc/jpc_cs.c for the JasPer JPEG-2000 library (libjasper) before 1.900 allows remote user-assisted attackers to cause a denial of service (crash) and possibly corrupt the heap via malformed image files, as originally demonstrated using imagemagick convert.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | ghostscript | < 8.61.dfsg.1~svn8187-1.1 | ghostscript_8.61.dfsg.1~svn8187-1.1_all.deb |
| Debian | 11 | all | ghostscript | < 8.61.dfsg.1~svn8187-1.1 | ghostscript_8.61.dfsg.1~svn8187-1.1_all.deb |
| Debian | 10 | all | ghostscript | < 8.61.dfsg.1~svn8187-1.1 | ghostscript_8.61.dfsg.1~svn8187-1.1_all.deb |
| Debian | 999 | all | ghostscript | < 8.61.dfsg.1~svn8187-1.1 | ghostscript_8.61.dfsg.1~svn8187-1.1_all.deb |
| Debian | 13 | all | ghostscript | < 8.61.dfsg.1~svn8187-1.1 | ghostscript_8.61.dfsg.1~svn8187-1.1_all.deb |
Related
openvas
openvas
Mandriva Update for jasper MDKSA-2007:129 (jasper)
2009-04-09 00:00:00
Mandriva Update for jasper MDKSA-2007:129 (jasper)
2009-04-09 00:00:00
SLES10: Security update for netpbm
2009-10-13 00:00:00
nessus
nessus
Fedora 7 : jasper-1.900.1-2.fc7 (2007-0005)
2012-09-24 00:00:00
SuSE 10 Security Update : netpbm (ZYPP Patch Number 4688)
2007-12-13 00:00:00
Ubuntu 6.10 / 7.04 / 7.10 : ghostscript, gs-gpl vulnerability (USN-501-2)
2007-11-10 00:00:00
ubuntu
ubuntu
Ghostscript vulnerability
2007-10-22 00:00:00
jasper vulnerability
2007-08-21 00:00:00
prion
prion
Design/Logic Flaw
2007-05-16 20:30:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:34:17
securityvulns
securityvulns
jasper library buffer overflow
2007-06-20 00:00:00
[ MDKSA-2007:129 ] - Updated jasper packages fix vulnerability
2007-06-20 00:00:00
ubuntucve
ubuntucve
CVE-2007-2721
2007-05-16 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: jasper-1.900.1-2.fc7
2007-05-31 18:07:53
cve
cve
CVE-2007-2721
2007-05-16 20:30:00
centos
centos
netpbm security update
2009-02-11 19:31:04
debian
debian
[SECURITY] [DSA 2036-1] New jasper packages fix denial of service
2010-04-17 21:23:29
oraclelinux
oraclelinux
netpbm security update
2009-02-11 00:00:00
redhat
redhat
(RHSA-2009:0012) Moderate: netpbm security update
2009-02-11 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.108 Low
EPSS
Percentile
95.0%
Related for DEBIANCVE:CVE-2007-2721