Lucene search
UbuntuUSN-2190-1HistoryMay 01, 2014 - 12:00 a.m.
JBIG-KIT vulnerability
2014-05-0100:00:00
ubuntu.com
32
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7
Confidence
Low
EPSS
0.034
Percentile
91.4%
Releases
- Ubuntu 14.04 ESM
- Ubuntu 13.10
- Ubuntu 12.10
Packages
- jbigkit - JBIG1 data compression library
Details
Florian Weimer discovered that JBIG-KIT incorrectly handled certain
malformed images. If a user or automated system were tricked into
processing a specially crafted image, JBIG-KIT could be made to crash, or
possibly execute arbitrary code.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 14.04 | noarch | libjbig0 | < 2.0-2ubuntu4.1 | UNKNOWN |
| Ubuntu | 14.04 | noarch | jbigkit-bin | < 2.0-2ubuntu4.1 | UNKNOWN |
| Ubuntu | 14.04 | noarch | libjbig-dev | < 2.0-2ubuntu4.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | libjbig0 | < 2.0-2ubuntu1.13.10.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | jbigkit-bin | < 2.0-2ubuntu1.13.10.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | libjbig-dev | < 2.0-2ubuntu1.13.10.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libjbig0 | < 2.0-2ubuntu1.12.10.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | jbigkit-bin | < 2.0-2ubuntu1.12.10.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libjbig-dev | < 2.0-2ubuntu1.12.10.1 | UNKNOWN |
References
Related
prion
prion
Stack overflow
2014-04-11 14:55:00
osv
osv
jbigkit - security update
2014-04-10 00:00:00
jbigkit-2.1-3.8 on GA media
2024-06-15 00:00:00
nessus
nessus
Ubuntu 14.04 LTS : JBIG-KIT vulnerability (USN-2190-1)
2014-05-02 00:00:00
openSUSE Security Update : jbigkit (openSUSE-SU-2014:0978-1)
2014-08-12 00:00:00
EulerOS Virtualization 3.0.1.0 : jbigkit (EulerOS-SA-2019-1430)
2019-05-14 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-2900-1)
2014-04-09 00:00:00
Gentoo Security Advisory GLSA 201405-20
2015-09-29 00:00:00
Fedora Update for jbigkit FEDORA-2014-4948
2014-04-16 00:00:00
securityvulns
securityvulns
JBIG-KIT buffer overflow
2014-05-02 00:00:00
[USN-2190-1] JBIG-KIT vulnerability
2014-05-02 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: jbigkit-2.0-9.fc19
2014-04-23 04:32:59
[SECURITY] Fedora 20 Update: jbigkit-2.0-10.fc20
2014-04-15 15:55:59
debiancve
debiancve
CVE-2013-6369
2014-04-11 14:55:05
debian
debian
[SECURITY] [DSA 2900-1] jbigkit security update
2014-04-10 20:03:24
gentoo
gentoo
JBIG-KIT: Denial of service
2014-05-18 00:00:00
mageia
mageia
Updated jbigkit packages fix CVE-2013-6369
2014-04-15 22:28:17
cve
cve
CVE-2013-6369
2014-04-11 14:55:05
cvelist
cvelist
CVE-2013-6369
2014-04-11 14:00:00
ubuntucve
ubuntucve
CVE-2013-6369
2014-04-11 00:00:00
nvd
nvd
CVE-2013-6369
2014-04-11 14:55:05
amazon
amazon
Medium: jbigkit
2014-05-13 16:23:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7
Confidence
Low
EPSS
0.034
Percentile
91.4%
Related for USN-2190-1