Reachable Assertion The advisory has been revoked - it doesn't affect any version of package jasper Open this link in a new tab

Threat Intelligence

EPSS 3.11% (91^st percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Snyk ID SNYK-UBUNTU1404-JASPER-343101
published 23 Mar 2017
disclosed 23 Mar 2017

Report a new vulnerability Found a mistake?

Introduced: 23 Mar 2017

CVE-2016-9398 Open this link in a new tab CWE-617 Open this link in a new tab

Amendment

The Ubuntu security team deemed this advisory irrelevant for Ubuntu:14.04.

NVD Description

Note: Versions mentioned in the description apply only to the upstream jasper package and not the jasper package as distributed by Ubuntu.

The jpc_floorlog2 function in jpc_math.c in JasPer before 1.900.17 allows remote attackers to cause a denial of service (assertion failure) via unspecified vectors.

Reachable Assertion The advisory has been revoked - it doesn't affect any version of package jasper Open this link in a new tab

Threat Intelligence

Introduced: 23 Mar 2017

Amendment

NVD Description

References