Lucene search

RedosROS-20240415-01

HistoryApr 15, 2024 - 12:00 a.m.

ROS-20240415-01

2024-04-1500:00:00

redos.red-soft.ru

jbig2dec

vulnerability

segv

denial of service

unix

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

6.7

Confidence

Low

EPSS

0.001

Percentile

17.0%

JSON

A vulnerability in the jbig2_error function of the jbig2.c file of the Jbig2dec image compression format decoder is related to the SEGV vulnerability.
SEGV vulnerability. Exploitation of the vulnerability could allow an attacker acting remotely to cause a
denial of service

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64jbig2dec< 0.19-3UNKNOWN

OS	Version	Architecture	Package	Version	Filename
redos	7.3	x86_64	jbig2dec	< 0.19-3	UNKNOWN

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

6.7

Confidence

Low

EPSS

0.001

Percentile

17.0%

JSON

Related for ROS-20240415-01