Your submission was sent successfully! Close

CVE-2016-9390

Published: 23 March 2017

The jas_seq2d_create function in jas_seq.c in JasPer before 1.900.14 allows remote attackers to cause a denial of service (assertion failure) via a crafted image file.

Priority

Negligible

CVSS 3 base score: 5.5

Status

Package Release Status
jasper
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Does not exist

precise Does not exist
(precise was needs-triage)
trusty Does not exist
(trusty was released [1.900.1-14ubuntu3.5])
upstream Needs triage

xenial
Released (1.900.1-debian1-2.4ubuntu1.2)
yakkety Ignored
(reached end-of-life)
zesty Does not exist