Lucene search
Gentoo FoundationMGASA-2024-0144HistoryApr 25, 2024 - 7:00 p.m.
Updated jasper packages fix security vulnerability
2024-04-2519:00:30
Gentoo Foundation
advisories.mageia.org
15
jasper packages
cve-2024-31744
denial of service
vulnerability
assertion failure
jpc_streamlist_remove
unix
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
7.3
Confidence
Low
EPSS
0
Percentile
9.0%
CVE-2024-31744: Fixed denial of service through assertion failure in jpc_streamlist_remove()
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 9 | noarch | jasper | < 3.0.6-1.1 | jasper-3.0.6-1.1.mga9 |
References
Related
cvelist
cvelist
CVE-2024-31744
2024-04-19 00:00:00
veracode
veracode
Assertion Failure
2024-04-22 06:14:10
vulnrichment
vulnrichment
CVE-2024-31744
2024-04-19 00:00:00
osv
osv
jasper-4.2.3-2.1 on GA media
2024-06-15 00:00:00
CVE-2024-31744
2024-04-19 13:15:13
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0144)
2024-04-26 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1396-1)
2024-05-07 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1464-1)
2024-08-20 00:00:00
nessus
nessus
SUSE SLES12 Security Update : jasper (SUSE-SU-2024:1396-1)
2024-04-24 00:00:00
ubuntucve
ubuntucve
CVE-2024-31744
2024-04-19 00:00:00
cve
cve
CVE-2024-31744
2024-04-19 13:15:13
nvd
nvd
CVE-2024-31744
2024-04-19 13:15:13
cbl_mariner
cbl_mariner
CVE-2024-31744 affecting package jasper for versions less than 4.2.1-2
2024-05-31 18:55:08
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
7.3
Confidence
Low
EPSS
0
Percentile
9.0%
Related for MGASA-2024-0144