Linux Distros Unpatched Vulnerability : CVE-2016-9397

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The jpcdequantize function in jpcdec.c in JasPer 1.900.13 allows remote attackers to cause a denial of service assertion failure via unspecified vectors...

Mageia: Security Advisory (MGASA-2017-0474)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : jasper (SUSE-SU-2020:2690-1)

This update for jasper fixes the following issues : CVE-2016-9398: Improved patch for already fixed issue bsc1010979. CVE-2016-9399: Fix assert in calcstepsizes bsc1010980. CVE-2016-9397: Fix assert in jpcdequantize bsc1010786. CVE-2016-9557: Fix signed integer overflow bsc1011829. CVE-2017-5499:...

EulerOS Virtualization for ARM 64 3.0.2.0 : jasper (EulerOS-SA-2020-1188)

According to the versions of the jasper package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - Runtime libraries for jasper. Security Fixes:Race condition in the jasstreamtmpfile function in...

Huawei EulerOS: Security Advisory for jasper (EulerOS-SA-2020-1188)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Denial Of Service (DoS)

libjasper.so is vulnerable to denial of service DoS attacks. A malicious user can pass a jpc file to the jpcdequantize function in jpcdec.c to cause an assertion failure that can crash the application. This issue was also given CVE-2016-9397...