CVE-2017-14229

CWE-8358 documents5 sources
Severity
7.5HIGH
EPSS
0.7%
top 28.05%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Jasper Project Jasper
Timeline
PublishedSep 9
Latest updateMay 13

Description

There is an infinite loop in the jpc_dec_tileinit function in jpc/jpc_dec.c of Jasper 2.0.13. It will lead to a remote denial of service attack.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-mfq9-xfj5-hxp8: There is an infinite loop in the jpc_dec_tileinit function in jpc/jpc_dec2022-05-13
CVEList
CVE-2017-14229: There is an infinite loop in the jpc_dec_tileinit function in jpc/jpc_dec2017-09-09

📋Vendor Advisories

1
Red Hat
jasper: excessive looping in jpc_dec_tileinit()2017-09-11

💬Community

4
Bugzilla
CVE-2017-14229 jasper: excessive looping in jpc_dec_tileinit()2017-09-14
Bugzilla
CVE-2017-14229 mingw-jasper: jasper: excessive looping in jpc_dec_tileinit() [epel-7]2017-09-14
Bugzilla
CVE-2017-14229 mingw-jasper: jasper: excessive looping in jpc_dec_tileinit() [fedora-all]2017-09-14
Bugzilla
CVE-2017-14229 jasper: excessive looping in jpc_dec_tileinit() [fedora-all]2017-09-14
CVE-2017-14229 (HIGH CVSS 7.5) | There is an infinite loop in the jp | cvebase.io