CVE-2011-4517

MEDIUM

Description

The jpc_crg_getparms function in libjasper/jpc/jpc_cs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service (heap memory corruption), via a crafted component registration (CRG) marker segment in a JPEG2000 file.

References

http://lists.fedoraproject.org/pipermail/package-announce/2011-December/071458.html

http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071561.html

http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00010.html

http://osvdb.org/77596

http://rhn.redhat.com/errata/RHSA-2015-0698.html

http://secunia.com/advisories/47193

http://secunia.com/advisories/47306

http://secunia.com/advisories/47353

http://www.debian.org/security/2011/dsa-2371

http://www.kb.cert.org/vuls/id/887409

http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html

http://www.redhat.com/support/errata/RHSA-2011-1807.html

http://www.redhat.com/support/errata/RHSA-2011-1811.html

http://www.securityfocus.com/bid/50992

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.538606

http://www.ubuntu.com/usn/USN-1315-1

http://www-01.ibm.com/support/docview.wss?uid=swg21660640

https://bugzilla.redhat.com/show_bug.cgi?id=747726

https://exchange.xforce.ibmcloud.com/vulnerabilities/71701

Details

Source: MITRE

Published: 2011-12-15

Updated: 2017-08-29

Type: CWE-119

Risk Information

CVSS v2.0

Base Score: 6.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 8.6

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:jasper_project:jasper:1.900.1:*:*:*:*:*:*:*

Tenable Plugins

View all (27 total)

IDNameProductFamilySeverity
94601openSUSE Security Update : jasper (openSUSE-2016-1270)NessusSuSE Local Security Checks
critical
86663Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / current : jasper (SSA:2015-302-02)NessusSlackware Local Security Checks
critical
81969RHEL 6 : rhevm-spice-client (RHSA-2015:0698) (POODLE)NessusRed Hat Local Security Checks
critical
80618Oracle Solaris Third-Party Patch Update : ghostscript (multiple_denial_of_service_vulnerabilities7)NessusSolaris Local Security Checks
medium
80068Fedora 19 : mingw-jasper-1.900.1-24.fc19 (2014-17032)NessusFedora Local Security Checks
high
80067Fedora 20 : mingw-jasper-1.900.1-24.fc20 (2014-17027)NessusFedora Local Security Checks
high
80066Fedora 21 : mingw-jasper-1.900.1-24.fc21 (2014-16961)NessusFedora Local Security Checks
high
75869openSUSE Security Update : jasper (openSUSE-SU-2011:1328-1)NessusSuSE Local Security Checks
medium
75532openSUSE Security Update : jasper (openSUSE-SU-2011:1328-1)NessusSuSE Local Security Checks
medium
74535openSUSE Security Update : jasper (openSUSE-2011-87)NessusSuSE Local Security Checks
medium
68404Oracle Linux 4 / 5 : netpbm (ELSA-2011-1811)NessusOracle Linux Local Security Checks
high
68403Oracle Linux 6 : jasper (ELSA-2011-1807)NessusOracle Linux Local Security Checks
medium
66012FreeBSD : jasper -- buffer overflow (8ff84335-a7da-11e2-b3f5-003067c2616f)NessusFreeBSD Local Security Checks
critical
58514Symantec Enterprise Vault / Oracle Outside In Multiple Vulnerabilities (SYM12-004)NessusWindows
medium
57652GLSA-201201-10 : JasPer: User-assisted execution of arbitrary codeNessusGentoo Local Security Checks
medium
57511Debian DSA-2371-1 : jasper - buffer overflowsNessusDebian Local Security Checks
medium
57436Ubuntu 8.04 LTS / 10.04 LTS / 10.10 : ghostscript vulnerabilities (USN-1317-1)NessusUbuntu Local Security Checks
critical
57417Fedora 16 : jasper-1.900.1-18.fc16 (2011-16966)NessusFedora Local Security Checks
medium
57416Fedora 15 : jasper-1.900.1-18.fc15 (2011-16955)NessusFedora Local Security Checks
medium
57378CentOS 6 : jasper (CESA-2011:1807)NessusCentOS Local Security Checks
medium
57357Ubuntu 10.04 LTS / 10.10 / 11.04 / 11.10 : jasper vulnerabilities (USN-1315-1)NessusUbuntu Local Security Checks
medium
57331Mandriva Linux Security Advisory : jasper (MDVSA-2011:189)NessusMandriva Local Security Checks
medium
57313SuSE 10 Security Update : jasper (ZYPP Patch Number 7878)NessusSuSE Local Security Checks
medium
57140CentOS 4 / 5 : netpbm (CESA-2011:1811)NessusCentOS Local Security Checks
high
57108SuSE 11.1 Security Update : jasper (SAT Patch Number 5523)NessusSuSE Local Security Checks
medium
57081RHEL 4 / 5 : netpbm (RHSA-2011:1811)NessusRed Hat Local Security Checks
high
57054RHEL 6 : jasper (RHSA-2011:1807)NessusRed Hat Local Security Checks
medium