Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2016-10251

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in the jpcpinextcprl function in jpct2cod.c in JasPer before 1.900.20 allows remote attackers to have unspecified impact via a crafted file,...

7.8CVSS7.2AI score0.02386EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.34 views

RHEL 7 : jasper (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - jasper: heap-based buffer over-read of size 8 in jasimagedepalettize in libjasper/base/jasimage.c...

8.9AI score0.14547EPSS
Exploits30References58
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.26 views

Mageia: Security Advisory (MGASA-2017-0474)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.3AI score0.05981EPSS
Exploits12References10
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2017:0953-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.1AI score0.02386EPSS
Exploits3References8
Tenable Nessus
Tenable Nessus
added 2020/04/15 12:0 a.m.358 views

Oracle Database Server Multiple Vulnerabilities (Apr 2020 CPU)

The remote Oracle Database Server is missing the April 2020 Critical Patch Update CPU. It is, therefore, affected by multiple vulnerabilities: - Vulnerability in the Oracle Multimedia component of Oracle Database Server. The supported version that is affected is 12.1.0.2. Easily exploitable...

8CVSS6.3AI score0.2258EPSS
Exploits2References9
OpenVAS
OpenVAS
added 2018/01/16 12:0 a.m.31 views

Debian: Security Advisory (DLA-920-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.7AI score0.02386EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2017/06/16 12:0 a.m.33 views

EulerOS 2.0 SP1 : jasper (EulerOS-SA-2017-1094)

According to the versions of the jasper package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple flaws were found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to...

7.8CVSS7.2AI score0.04414EPSS
Exploits11References31
Tenable Nessus
Tenable Nessus
added 2017/06/16 12:0 a.m.38 views

EulerOS 2.0 SP2 : jasper (EulerOS-SA-2017-1095)

According to the versions of the jasper package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple flaws were found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to...

7.8CVSS7.2AI score0.04414EPSS
Exploits11References31
Tenable Nessus
Tenable Nessus
added 2017/06/07 12:0 a.m.43 views

Amazon Linux AMI : jasper (ALAS-2017-836)

Multiple flaws were found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code. CVE-2016-8654 , CVE-2016-9560 , CVE-2016-10249 , CVE-2015-5203 , CVE-2015-5221 , CVE-2016-1577 , CVE-2016-8690...

9.3CVSS7AI score0.04414EPSS
Exploits11References30
Tenable Nessus
Tenable Nessus
added 2017/05/19 12:0 a.m.42 views

Fedora 24 : jasper (2017-da0b00fd64)

Security fix for CVE-2016-9387, CVE-2016-9388, CVE-2016-9389, CVE-2016-9390, CVE-2016-9391, CVE-2016-9392, CVE-2016-9393, CVE-2016-9394, CVE-2016-9560, CVE-2016-9591, CVE-2016-9600, CVE-2016-10251 Note that Tenable Network Security has extracted the preceding description block directly from the...

7.8CVSS6.6AI score0.04414EPSS
Exploits3References13
OpenVAS
OpenVAS
added 2017/05/18 12:0 a.m.29 views

Fedora Update for jasper FEDORA-2017-cfc20d5d45

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.04414EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2017/05/17 12:0 a.m.32 views

Fedora 25 : jasper (2017-cfc20d5d45)

Security fix for CVE-2016-9387, CVE-2016-9388, CVE-2016-9389, CVE-2016-9390, CVE-2016-9391, CVE-2016-9392, CVE-2016-9393, CVE-2016-9394, CVE-2016-9560, CVE-2016-9591, CVE-2016-9600, CVE-2016-10251 Note that Tenable Network Security has extracted the preceding description block directly from the...

7.8CVSS6.6AI score0.04414EPSS
Exploits3References13
Tenable Nessus
Tenable Nessus
added 2017/05/11 12:0 a.m.54 views

Scientific Linux Security Update : jasper on SL6.x, SL7.x i386/x86_64 (20170509)

Security Fixes : Multiple flaws were found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code. CVE-2016-8654, CVE-2016-9560, CVE-2016-10249, CVE-2015-5203, CVE-2015-5221, CVE-2016-1577,...

7.8CVSS7.1AI score0.04414EPSS
Exploits11References31
Tenable Nessus
Tenable Nessus
added 2017/04/07 12:0 a.m.64 views

SUSE SLED12 / SLES12 Security Update : jasper (SUSE-SU-2017:0953-1)

This update for jasper fixes the following issues: Security issues fixed : - CVE-2016-9600: NULL pointer Dereference due to missing check for UNKNOWN color space in JP2 encoder bsc1018088 - CVE-2016-10251: Use of uninitialized value in jpcpinextcprl jpct2cod.c bsc1029497 - CVE-2017-5498: left-shi...

7.8CVSS6.6AI score0.02386EPSS
Exploits3References16
OSV
OSV
added 2017/04/05 1:26 p.m.6 views

SUSE-SU-2017:0946-1 Security update for jasper

This update for jasper fixes the following issues: Security issues fixed: - CVE-2016-8654: Heap-based buffer overflow in QMFB code in JPC codec bsc1012530 - CVE-2016-9395: Missing sanity checks on the data in a SIZ marker segment bsc1010977. - CVE-2016-9398: jpcmath.c:94: int jpcfloorlog2int:...

7.8CVSS7AI score0.05981EPSS
Exploits6References21
RedhatCVE
RedhatCVE
added 2017/03/21 2:48 p.m.36 views

CVE-2016-10251

Integer overflow in the jpcpinextcprl function in jpct2cod.c in JasPer before 1.900.20 allows remote attackers to have unspecified impact via a crafted file, which triggers use of an uninitialized value...

7.8CVSS7.4AI score0.02386EPSS
Exploits1References1
NVD
NVD
added 2017/03/15 2:59 p.m.21 views

CVE-2016-10251

Integer overflow in the jpcpinextcprl function in jpct2cod.c in JasPer before 1.900.20 allows remote attackers to have unspecified impact via a crafted file, which triggers use of an uninitialized value...

7.8CVSS8AI score0.02386EPSS
Exploits1References6
CVE
CVE
added 2017/03/15 2:0 p.m.165 views

CVE-2016-10251

CVE-2016-10251 : JasPer 1.900.x before 1.900.20 contains an integer overflow in jpc_pi_nextcprl (jpc_t2cod.c). Crafting a JPEG 2000 file can trigger use of an uninitialized value, with unspecified impact. Affected software versions: JasPer up to but not including 1.900.20. Remediation: upgrade to...

7.8CVSS7.8AI score0.02386EPSS
Exploits1References6Affected Software1
UbuntuCve
UbuntuCve
added 2017/03/15 12:0 a.m.27 views

CVE-2016-10251

Integer overflow in the jpcpinextcprl function in jpct2cod.c in JasPer before 1.900.20 allows remote attackers to have unspecified impact via a crafted file, which triggers use of an uninitialized value...

7.8CVSS7.2AI score0.02386EPSS
Exploits1References4
OSV
OSV
added 2017/03/15 12:0 a.m.1 views

UBUNTU-CVE-2016-10251

Integer overflow in the jpcpinextcprl function in jpct2cod.c in JasPer before 1.900.20 allows remote attackers to have unspecified impact via a crafted file, which triggers use of an uninitialized value...

7.8CVSS7.2AI score0.02386EPSS
Exploits1References5
Rows per page
Query Builder