CVE-2016-9392
- EPSS 1.95%
- Veröffentlicht 23.03.2017 18:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The calcstepsizes function in jpc_dec.c in JasPer before 1.900.17 allows remote attackers to cause a denial of service (assertion failure) via a crafted file.
CVE-2016-9393
- EPSS 1.93%
- Veröffentlicht 23.03.2017 18:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The jpc_pi_nextrpcl function in jpc_t2cod.c in JasPer before 1.900.17 allows remote attackers to cause a denial of service (assertion failure) via a crafted file.
CVE-2016-9394
- EPSS 1.98%
- Veröffentlicht 23.03.2017 18:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The jas_seq2d_create function in jas_seq.c in JasPer before 1.900.17 allows remote attackers to cause a denial of service (assertion failure) via a crafted file.
CVE-2016-9395
- EPSS 1.48%
- Veröffentlicht 23.03.2017 18:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The jas_seq2d_create function in jas_seq.c in JasPer before 1.900.25 allows remote attackers to cause a denial of service (assertion failure) via a crafted file.
CVE-2016-9396
- EPSS 5.69%
- Veröffentlicht 23.03.2017 18:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The JPC_NOMINALGAIN function in jpc/jpc_t1cod.c in JasPer through 2.0.12 allows remote attackers to cause a denial of service (JPC_COX_RFT assertion failure) via unspecified vectors.
CVE-2016-9397
- EPSS 3.59%
- Veröffentlicht 23.03.2017 18:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The jpc_dequantize function in jpc_dec.c in JasPer 1.900.13 allows remote attackers to cause a denial of service (assertion failure) via unspecified vectors.
CVE-2017-5505
- EPSS 2.07%
- Veröffentlicht 16.03.2017 15:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The jas_matrix_asl function in jas_seq.c in JasPer 1.900.27 allows remote attackers to cause a denial of service (invalid memory read and crash) via a crafted image.
CVE-2017-6850
- EPSS 1.77%
- Veröffentlicht 15.03.2017 14:59:01
- Zuletzt bearbeitet 13.05.2026 00:24:29
The jp2_cdef_destroy function in jp2_cod.c in JasPer before 2.0.13 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted image.
CVE-2017-6851
- EPSS 1.51%
- Veröffentlicht 15.03.2017 14:59:01
- Zuletzt bearbeitet 13.05.2026 00:24:29
The jas_matrix_bindsub function in jas_seq.c in JasPer 2.0.10 allows remote attackers to cause a denial of service (invalid read) via a crafted image.
CVE-2017-6852
- EPSS 1.87%
- Veröffentlicht 15.03.2017 14:59:01
- Zuletzt bearbeitet 13.05.2026 00:24:29
Heap-based buffer overflow in the jpc_dec_decodepkt function in jpc_t2dec.c in JasPer 2.0.10 allows remote attackers to have unspecified impact via a crafted image.