13 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-5504
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The jpcundoroi function in libjasper/jpc/jpcdec.c in JasPer 1.900.27 allows remote attackers to cause a denial of service invalid memory read and crash via a...
SUSE: Security Advisory (SUSE-SU-2020:2689-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15 / SLES15 Security Update : jasper (SUSE-SU-2020:2689-1)
This update for jasper fixes the following issues : CVE-2016-9398: Improved patch for already fixed issue bsc1010979. CVE-2016-9399: Fix assert in calcstepsizes bsc1010980. CVE-2017-5499: Validate component depth bit bsc1020451. CVE-2017-5503: Check bounds in jasseq2dbindsub bsc1020456...
SUSE SLES12 Security Update : jasper (SUSE-SU-2020:2690-1)
This update for jasper fixes the following issues : CVE-2016-9398: Improved patch for already fixed issue bsc1010979. CVE-2016-9399: Fix assert in calcstepsizes bsc1010980. CVE-2016-9397: Fix assert in jpcdequantize bsc1010786. CVE-2016-9557: Fix signed integer overflow bsc1011829. CVE-2017-5499:...
openSUSE Security Update : jasper (openSUSE-2020-1517)
This update for jasper fixes the following issues : - CVE-2016-9398: Improved patch for already fixed issue bsc1010979. - CVE-2016-9399: Fix assert in calcstepsizes bsc1010980. - CVE-2017-5499: Validate component depth bit bsc1020451. - CVE-2017-5503: Check bounds in jasseq2dbindsub bsc1020456. -...
openSUSE Security Update : jasper (openSUSE-2020-1523)
This update for jasper fixes the following issues : - CVE-2016-9398: Improved patch for already fixed issue bsc1010979. - CVE-2016-9399: Fix assert in calcstepsizes bsc1010980. - CVE-2017-5499: Validate component depth bit bsc1020451. - CVE-2017-5503: Check bounds in jasseq2dbindsub bsc1020456. -...
openSUSE: Security Advisory for jasper (openSUSE-SU-2020:1523-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE: Security Advisory for jasper (openSUSE-SU-2020:1517-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Security update for jasper (moderate)
openSUSE Security Update: Security update for jasper Announcement ID: openSUSE-SU-2020:1523-1 Rating: moderate References: 1010979 1010980 1020451 1020456 1020458 1020460 1045450 1057152 1088278 1114498 1115637 1117328 1120805 1120807 Cross-References: CVE-2016-9398 CVE-2016-9399 CVE-2017-14132...
FreeBSD : jasper -- multiple vulnerabilities (6842ac7e-d250-11ea-b9b7-08002728f74c)
JasPer NEWS : - Fix CVE-2018-9154 - Fix CVE-2018-19541 - Fix CVE-2016-9399, CVE-2017-13751 - Fix CVE-2018-19540 - Fix CVE-2018-9055 - Fix CVE-2017-13748 - Fix CVE-2017-5503, CVE-2017-5504, CVE-2017-5505 - Fix CVE-2018-9252 - Fix CVE-2018-19139 - Fix CVE-2018-19543, CVE-2017-9782 - Fix...
jasper -- multiple vulnerabilities
JasPer NEWS: - Fix CVE-2018-9154 - Fix CVE-2018-19541 - Fix CVE-2016-9399, CVE-2017-13751 - Fix CVE-2018-19540 - Fix CVE-2018-9055 - Fix CVE-2017-13748 - Fix CVE-2017-5503, CVE-2017-5504, CVE-2017-5505 - Fix CVE-2018-9252 - Fix CVE-2018-19139 - Fix CVE-2018-19543, CVE-2017-9782 - Fix CVE-2018-205...
CVE-2017-5504
The jpcundoroi function in libjasper/jpc/jpcdec.c in JasPer 1.900.27 allows remote attackers to cause a denial of service invalid memory read and crash via a crafted image...
CVE-2017-5504
CVE-2017-5504 is a vulnerability in JasPer where the function jpc_undo_roi in libjasper/jpc/jpc_dec.c (present in JasPer 1.900.27) can be exploited by a crafted image to cause a denial of service via an invalid memory read/crash. The connected documents indicate this CVE is discussed within Jaspe...