JasPer 2.0.12 is vulnerable to a NULL pointer exception in the function jp2_encode which failed to check to see if the image contained at least one component resulting in a denial-of-service.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2017/03/06/1 | Mailing List Third Party Advisory |
http://www.securityfocus.com/bid/96595 | Third Party Advisory VDB Entry |
https://access.redhat.com/errata/RHSA-2018:3253 | Third Party Advisory |
https://access.redhat.com/errata/RHSA-2018:3505 | Broken Link |
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N4ALB4SXHURLVWKAOKYRNJXPABW3M22M/ | |
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UPOVZTSIQPW2H4AFLMI3LHJEZGBVEQET/ | |
https://security.gentoo.org/glsa/201908-03 | Third Party Advisory |
https://usn.ubuntu.com/3693-1/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
History
07 Nov 2023, 02:37
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
22 Feb 2021, 14:20
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:* cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:* cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:* |
|
References | (REDHAT) https://access.redhat.com/errata/RHSA-2018:3505 - Broken Link | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UPOVZTSIQPW2H4AFLMI3LHJEZGBVEQET/ - Mailing List, Third Party Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/3693-1/ - Third Party Advisory | |
References | (GENTOO) https://security.gentoo.org/glsa/201908-03 - Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/N4ALB4SXHURLVWKAOKYRNJXPABW3M22M/ - Mailing List, Third Party Advisory | |
References | (REDHAT) https://access.redhat.com/errata/RHSA-2018:3253 - Third Party Advisory |
03 Feb 2021, 04:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
31 Jan 2021, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2017-07-17 13:18
Updated : 2023-12-10 12:15
NVD link : CVE-2017-1000050
Mitre link : CVE-2017-1000050
CVE.ORG link : CVE-2017-1000050
JSON object : View
Products Affected
redhat
- enterprise_linux_desktop
- enterprise_linux_server
- enterprise_linux_workstation
jasper_project
- jasper
canonical
- ubuntu_linux
fedoraproject
- fedora
CWE
CWE-476
NULL Pointer Dereference