CVE-2016-9399
published 2017-03-23CVE-2016-9399: The calcstepsizes function in jpc_dec.c in JasPer 1.900.22 allows remote attackers to cause a denial of service (assertion failure) via unspecified vectors.
PriorityP335high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
3.76%
88.5th percentile
The calcstepsizes function in jpc_dec.c in JasPer 1.900.22 allows remote attackers to cause a denial of service (assertion failure) via unspecified vectors.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| jasper_project | jasper | — | — |
| opensuse | leap | — | — |
| opensuse | leap | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv7.5HIGH
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-g4f2-xv55-369r: The calcstepsizes function in jpc_dec
ghsa_unreviewed·2022-05-13
CVE-2016-9399 [HIGH] CWE-617 GHSA-g4f2-xv55-369r: The calcstepsizes function in jpc_dec
The calcstepsizes function in jpc_dec.c in JasPer 1.900.22 allows remote attackers to cause a denial of service (assertion failure) via unspecified vectors.
OSV
CVE-2016-9399: The calcstepsizes function in jpc_dec
osv·2017-03-23·CVSS 7.5
CVE-2016-9399 [HIGH] CVE-2016-9399: The calcstepsizes function in jpc_dec
The calcstepsizes function in jpc_dec.c in JasPer 1.900.22 allows remote attackers to cause a denial of service (assertion failure) via unspecified vectors.
Red Hat
jasper: reachable assertion in calcstepsizes()
vendor_redhat·2016-11-16·CVSS 7.5
CVE-2016-9399 [HIGH] CWE-617 jasper: reachable assertion in calcstepsizes()
jasper: reachable assertion in calcstepsizes()
The calcstepsizes function in jpc_dec.c in JasPer 1.900.22 allows remote attackers to cause a denial of service (assertion failure) via unspecified vectors.
Package: netpbm (Red Hat Enterprise Linux 5) - Will not fix
Package: jasper (Red Hat Enterprise Linux 6) - Will not fix
Package: jasper (Red Hat Enterprise Linux 7) - Will not fix
Package: jasper (Red Hat Enterprise Linux 9) - Not affected
Package: mingw-virt-viewer (Red Hat Enterprise Virtualization 3) - Will not fix
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2017-13751 jasper: reachable assertion in calcstepsizes()
bugzilla·2017-09-06·CVSS 7.5
CVE-2017-13751 [HIGH] CVE-2017-13751 jasper: reachable assertion in calcstepsizes()
CVE-2017-13751 jasper: reachable assertion in calcstepsizes()
There is a reachable assertion abort in the function calcstepsizes() in jpc/jpc_dec.c in JasPer 2.0.12 that will lead to a denial of service attack.
Product bug:
https://bugzilla.redhat.com/show_bug.cgi?id=1485283
Discussion:
Created jasper tracking bugs for this issue:
Affects: fedora-all [bug 1434464]
Created mingw-jasper tracking bugs for this issue:
Affects: epel-7 [bug 1434465]
Affects: fedora-all [bug 1434467]
---
This CVE is for the same reachable assertion as CVE-2016-9399 (bug 1396981). Upstream bug report is:
https://github.com/mdadams/jasper/issues/83
The issue remains unfixed in the current upstream version 2.0.14.
---
Upstream commit:
https://github.com/jasper-software/jasper/commit/84d00fb29a22e360c
Bugzilla
There is a reachable assertion abort in function calcstepsizes() of JasPer that will lead to remote denial of service attack.
bugzilla·2017-08-25
There is a reachable assertion abort in function calcstepsizes() of JasPer that will lead to remote denial of service attack.
There is a reachable assertion abort in function calcstepsizes() of JasPer that will lead to remote denial of service attack.
Created attachment 1318069
Triggered by " ./imginfo -f POC6"
Description of problem:
There is a reachable assertion abort in function calcstepsizes() of JasPer that will lead to remote denial of service attack.
Version-Release number of selected component (if applicable):
0) ? ((bandno + 2) / 3) : (0)))) & (~0x1f))' failed.
Aborted (core dumped)
The gdb debugging information is listed below:
(gdb) set args POC6
(gdb) r
The program being debugged has been started already.
Start it from the beginning? (y or n) y
Starting program: /home/icy/secreal/jasper/install/bin/imginfo -f fuzz/output/crashes/id:000072,sig:06,src:001342,op:flip2,pos:238
warning: trailing ga
Bugzilla
CVE-2016-9396 CVE-2016-9397 CVE-2016-9398 CVE-2016-9399 CVE-2017-1000050 CVE-2017-13745 CVE-2017-13746 CVE-2017-13747 CVE-2017-13748 CVE-2017-13749 CVE-2017-13750 CVE-2017-13751 CVE-2017-13752 CVE-201
bugzilla·2017-03-21·CVSS 7.5
CVE-2016-9396 [HIGH] CVE-2016-9396 CVE-2016-9397 CVE-2016-9398 CVE-2016-9399 CVE-2017-1000050 CVE-2017-13745 CVE-2017-13746 CVE-2017-13747 CVE-2017-13748 CVE-2017-13749 CVE-2017-13750 CVE-2017-13751 CVE-2017-13752 CVE-201
CVE-2016-9396 CVE-2016-9397 CVE-2016-9398 CVE-2016-9399 CVE-2017-1000050 CVE-2017-13745 CVE-2017-13746 CVE-2017-13747 CVE-2017-13748 CVE-2017-13749 CVE-2017-13750 CVE-2017-13751 CVE-2017-13752 CVE-2017-14132 ... jasper: various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant t
Bugzilla
CVE-2016-9387 CVE-2016-9388 CVE-2016-9389 CVE-2016-9390 CVE-2016-9391 CVE-2016-9392 CVE-2016-9393 CVE-2016-9394 CVE-2016-9395 CVE-2016-9396 CVE-2016-9397 CVE-2016-9398 CVE-2016-9399 mingw-jasper: vari
bugzilla·2016-11-21·CVSS 7.8
CVE-2016-9387 [HIGH] CVE-2016-9387 CVE-2016-9388 CVE-2016-9389 CVE-2016-9390 CVE-2016-9391 CVE-2016-9392 CVE-2016-9393 CVE-2016-9394 CVE-2016-9395 CVE-2016-9396 CVE-2016-9397 CVE-2016-9398 CVE-2016-9399 mingw-jasper: vari
CVE-2016-9387 CVE-2016-9388 CVE-2016-9389 CVE-2016-9390 CVE-2016-9391 CVE-2016-9392 CVE-2016-9393 CVE-2016-9394 CVE-2016-9395 CVE-2016-9396 CVE-2016-9397 CVE-2016-9398 CVE-2016-9399 mingw-jasper: various flaws [epel-7]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please
Bugzilla
CVE-2016-9387 CVE-2016-9388 CVE-2016-9389 CVE-2016-9390 CVE-2016-9391 CVE-2016-9392 CVE-2016-9393 CVE-2016-9394 CVE-2016-9395 CVE-2016-9396 CVE-2016-9397 CVE-2016-9398 CVE-2016-9399 jasper: various fl
bugzilla·2016-11-21·CVSS 7.8
CVE-2016-9387 [HIGH] CVE-2016-9387 CVE-2016-9388 CVE-2016-9389 CVE-2016-9390 CVE-2016-9391 CVE-2016-9392 CVE-2016-9393 CVE-2016-9394 CVE-2016-9395 CVE-2016-9396 CVE-2016-9397 CVE-2016-9398 CVE-2016-9399 jasper: various fl
CVE-2016-9387 CVE-2016-9388 CVE-2016-9389 CVE-2016-9390 CVE-2016-9391 CVE-2016-9392 CVE-2016-9393 CVE-2016-9394 CVE-2016-9395 CVE-2016-9396 CVE-2016-9397 CVE-2016-9398 CVE-2016-9399 jasper: various flaws [epel-5]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also m
Bugzilla
CVE-2016-9387 CVE-2016-9388 CVE-2016-9389 CVE-2016-9390 CVE-2016-9391 CVE-2016-9392 CVE-2016-9393 CVE-2016-9394 CVE-2016-9395 CVE-2016-9396 CVE-2016-9397 CVE-2016-9398 CVE-2016-9399 CVE-2016-9557 CVE-
bugzilla·2016-11-21·CVSS 7.8
CVE-2016-9387 [HIGH] CVE-2016-9387 CVE-2016-9388 CVE-2016-9389 CVE-2016-9390 CVE-2016-9391 CVE-2016-9392 CVE-2016-9393 CVE-2016-9394 CVE-2016-9395 CVE-2016-9396 CVE-2016-9397 CVE-2016-9398 CVE-2016-9399 CVE-2016-9557 CVE-
CVE-2016-9387 CVE-2016-9388 CVE-2016-9389 CVE-2016-9390 CVE-2016-9391 CVE-2016-9392 CVE-2016-9393 CVE-2016-9394 CVE-2016-9395 CVE-2016-9396 CVE-2016-9397 CVE-2016-9398 CVE-2016-9399 CVE-2016-9557 CVE-2016-9560 mingw-jasper: various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant t
Bugzilla
CVE-2016-9387 CVE-2016-9388 CVE-2016-9389 CVE-2016-9390 CVE-2016-9391 CVE-2016-9392 CVE-2016-9393 CVE-2016-9394 CVE-2016-9396 CVE-2016-9560 jasper: various flaws [fedora-all]
bugzilla·2016-11-21·CVSS 7.8
CVE-2016-9387 [HIGH] CVE-2016-9387 CVE-2016-9388 CVE-2016-9389 CVE-2016-9390 CVE-2016-9391 CVE-2016-9392 CVE-2016-9393 CVE-2016-9394 CVE-2016-9396 CVE-2016-9560 jasper: various flaws [fedora-all]
CVE-2016-9387 CVE-2016-9388 CVE-2016-9389 CVE-2016-9390 CVE-2016-9391 CVE-2016-9392 CVE-2016-9393 CVE-2016-9394 CVE-2016-9396 CVE-2016-9560 jasper: various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM c
Bugzilla
CVE-2016-9399 jasper: reachable assertion in calcstepsizes()
bugzilla·2016-11-21·CVSS 7.5
CVE-2016-9399 [HIGH] CVE-2016-9399 jasper: reachable assertion in calcstepsizes()
CVE-2016-9399 jasper: reachable assertion in calcstepsizes()
An assertion failure was possible to trigger in calcstepsizes.
CVE assignment:
http://seclists.org/oss-sec/2016/q4/441
Discussion:
Created mingw-jasper tracking bugs for this issue:
Affects: fedora-all [bug 1396987]
Affects: epel-7 [bug 1396989]
---
Created jasper tracking bugs for this issue:
Affects: fedora-all [bug 1396986]
Affects: epel-5 [bug 1396988]
---
Upstream bug report:
https://github.com/mdadams/jasper/issues/83
Original reporter's advisory:
https://blogs.gentoo.org/ago/2016/11/16/jasper-multiple-assertion-failure/
Relevant information form the advisory:
Affected version: 1.900.22
Output/failure:
warning: trailing garbage in marker segment (9 bytes)
warning: trailing garbage in marker segment (28 byte
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00082.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-09/msg00085.htmlhttp://www.openwall.com/lists/oss-security/2016/11/17/1http://www.securityfocus.com/bid/94380https://blogs.gentoo.org/ago/2016/11/16/jasper-multiple-assertion-failurehttps://bugzilla.redhat.com/show_bug.cgi?id=1396981https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N4ALB4SXHURLVWKAOKYRNJXPABW3M22M/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UPOVZTSIQPW2H4AFLMI3LHJEZGBVEQET/http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00082.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-09/msg00085.htmlhttp://www.openwall.com/lists/oss-security/2016/11/17/1http://www.securityfocus.com/bid/94380https://blogs.gentoo.org/ago/2016/11/16/jasper-multiple-assertion-failurehttps://bugzilla.redhat.com/show_bug.cgi?id=1396981https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N4ALB4SXHURLVWKAOKYRNJXPABW3M22M/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UPOVZTSIQPW2H4AFLMI3LHJEZGBVEQET/
2017-03-23
Published