There is a reachable assertion abort in the function jpc_dec_process_sot() in jpc/jpc_dec.c in JasPer 2.0.12 that will lead to a remote denial of service attack by triggering an unexpected jpc_ppmstabtostreams return value, a different vulnerability than CVE-2018-9154.
References
Configurations
History
07 Nov 2023, 02:38
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
03 Feb 2021, 04:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
31 Jan 2021, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2017-08-29 06:29
Updated : 2023-12-10 12:15
NVD link : CVE-2017-13745
Mitre link : CVE-2017-13745
CVE.ORG link : CVE-2017-13745
JSON object : View
Products Affected
jasper_project
- jasper
CWE
CWE-617
Reachable Assertion