Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv3

CVE-2016-9396

Published: 23/03/2017 Updated: 07/11/2023
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Summary

The JPC_NOMINALGAIN function in jpc/jpc_t1cod.c in JasPer up to and including 2.0.12 allows remote malicious users to cause a denial of service (JPC_COX_RFT assertion failure) via unspecified vectors.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

jasper project jasper

Vendor Advisories

Ubuntu Security Notice: jasper vulnerabilities
Several security issues were fixed in JasPer ...
Red Hat: Low: jasper security update
Synopsis Low: jasper security update Type/Severity Security Advisory: Low Topic An update for jasper is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Low A Common Vulnerability Scoring System (CVSS) base score, which gives a detai ...
Red Hat: Critical: Red Hat Ansible Tower 3.3.1-2 Release - Container Image
Synopsis Critical: Red Hat Ansible Tower 331-2 Release - Container Image Type/Severity Security Advisory: Critical Topic Security Advisory Description Red Hat Ansible Tower 331 is now available and contains the following bug fixes: Fixed event callback error when in-line vaulted variabl ...
Amazon Linux 2: ALAS2-2019-1150
The JPC_NOMINALGAIN function in jpc/jpc_t1codc in JasPer through 2012 allows remote attackers to cause a denial of service (JPC_COX_RFT assertion failure) via unspecified vectors(CVE-2016-9396) JasPer 2012 is vulnerable to a NULL pointer exception in the function jp2_encode which failed to check to see if the image contained at least one comp ...
Red Hat: CVE-2016-9396
The JPC_NOMINALGAIN function in jpc/jpc_t1codc in JasPer through 2012 allows remote attackers to cause a denial of service (JPC_COX_RFT assertion failure) via unspecified vectors ...

References

NVD-CWE-Otherhttps://bugzilla.redhat.com/show_bug.cgi?id=1396978https://blogs.gentoo.org/ago/2016/11/16/jasper-multiple-assertion-failurehttp://www.securityfocus.com/bid/94379http://www.openwall.com/lists/oss-security/2016/11/17/1https://bugzilla.redhat.com/show_bug.cgi?id=1485272https://usn.ubuntu.com/3693-1/https://access.redhat.com/errata/RHSA-2018:3253https://access.redhat.com/errata/RHSA-2018:3505http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00004.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UPOVZTSIQPW2H4AFLMI3LHJEZGBVEQET/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N4ALB4SXHURLVWKAOKYRNJXPABW3M22M/https://usn.ubuntu.com/3693-1/https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324path traversalCVE-2024-4743CVE-2024-5184TCPCVE-2024-27822code injectionCVE-2024-28995CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook