CVE-2011-4517

2011-12-1400:00:00

ubuntu.com

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.172 Low

EPSS

Percentile

96.1%

JSON

The jpc_crg_getparms function in libjasper/jpc/jpc_cs.c in JasPer 1.900.1
uses an incorrect data type during a certain size calculation, which allows
remote attackers to trigger a heap-based buffer overflow and execute
arbitrary code, or cause a denial of service (heap memory corruption), via
a crafted component registration (CRG) marker segment in a JPEG2000 file.

Notes

Author	Note
mdeslaur	ghostscript has embedded jasper in maverick and older Debian’s netpbm-free doesn’t contain jasper

OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchghostscript< 8.61.dfsg.1-1ubuntu3.4UNKNOWN
ubuntu10.04noarchghostscript< 8.71.dfsg.1-0ubuntu5.4UNKNOWN
ubuntu10.10noarchghostscript< 8.71.dfsg.2-0ubuntu7.1UNKNOWN
ubuntu10.04noarchjasper< 1.900.1-7ubuntu0.10.04.1UNKNOWN
ubuntu10.10noarchjasper< 1.900.1-7ubuntu0.10.10.1UNKNOWN
ubuntu11.04noarchjasper< 1.900.1-7ubuntu2.11.04.1UNKNOWN
ubuntu11.10noarchjasper< 1.900.1-7ubuntu2.11.10.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	8.04	noarch	ghostscript	< 8.61.dfsg.1-1ubuntu3.4	UNKNOWN
ubuntu	10.04	noarch	ghostscript	< 8.71.dfsg.1-0ubuntu5.4	UNKNOWN
ubuntu	10.10	noarch	ghostscript	< 8.71.dfsg.2-0ubuntu7.1	UNKNOWN
ubuntu	10.04	noarch	jasper	< 1.900.1-7ubuntu0.10.04.1	UNKNOWN
ubuntu	10.10	noarch	jasper	< 1.900.1-7ubuntu0.10.10.1	UNKNOWN
ubuntu	11.04	noarch	jasper	< 1.900.1-7ubuntu2.11.04.1	UNKNOWN
ubuntu	11.10	noarch	jasper	< 1.900.1-7ubuntu2.11.10.1	UNKNOWN