← Back

CVE-2016-9398

nvd nist
Published: Mar 23, 2017Modified: May 13, 2026

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD

Description

The jpc_floorlog2 function in jpc_math.c in JasPer before 1.900.17 allows remote attackers to cause a denial of service (assertion failure) via unspecified vectors.

Affected (14)

Products: Jasper Project: Jasper · Fedoraproject: Fedora · Opensuse: Leap · +1 more
Show all products
Jasper Project: Jasper · Fedoraproject: Fedora · Opensuse: Leap · Suse: Linux Enterprise Desktop, Linux Enterprise Server, Linux Enterprise Software Development Kit
Jasper Project
1 product
Jasper
Fedoraproject
1 product
Fedora
Opensuse
1 product
Leap
Suse
3 products
Linux Enterprise Desktop
Linux Enterprise Server
Linux Enterprise Software Development Kit
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Jasper
Before 1.900.17
Configuration B
2 vulnerable
Vulnerable SoftwareAffected Versions
Fedoraproject
Fedora
Version 32
Fedora
Version 33
Configuration C
11 vulnerable
Vulnerable SoftwareAffected Versions
Opensuse
Leap
Version 15.1
Leap
Version 15.2
Leap
Version 42.1
Leap
Version 42.2
Suse
Linux Enterprise Desktop
Version 12 sp1
Linux Enterprise Desktop
Version 12 sp2
Suse
Linux Enterprise Server
Version 12 sp1
Linux Enterprise Server
Version 12 sp2
Linux Enterprise Server
Version 12 sp2
Suse
Linux Enterprise Software Development Kit
Version 12 sp1
Linux Enterprise Software Development Kit
Version 12 sp2

Related CWEs

CWE-617
Reachable Assertion
The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

References (20)

Source: cve@mitre.org
Mailing ListThird Party Advisory
Source: cve@mitre.org
Mailing ListThird Party Advisory
Source: cve@mitre.org
Mailing ListThird Party Advisory
Source: cve@mitre.org
Mailing ListThird Party Advisory
Source: cve@mitre.org
Mailing ListPatchThird Party AdvisoryVDB Entry
Source: cve@mitre.org
Third Party AdvisoryVDB Entry
Source: cve@mitre.org
PatchThird Party Advisory
Source: cve@mitre.org
Issue TrackingPatchThird Party Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListPatchThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
PatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Issue TrackingPatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.