Back to bug 1385499
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Adam Mariš | 2016-10-17 08:51:48 UTC | Blocks | 1385510 | |
| Adam Mariš | 2016-10-17 08:54:29 UTC | Depends On | 1385516 | |
| Adam Mariš | 2016-10-17 08:54:38 UTC | Depends On | 1385517 | |
| Adam Mariš | 2016-10-17 08:54:47 UTC | Depends On | 1385518 | |
| Adam Mariš | 2016-10-17 08:54:56 UTC | Depends On | 1385519 | |
| Slawomir Czarko | 2016-10-18 08:19:43 UTC | CC | slawomir | |
| Andrej Nemec | 2016-10-19 13:01:26 UTC | CC | anemec | |
| Tomas Hoger | 2016-11-29 09:36:22 UTC | Blocks | 1385510 | |
| Tomas Hoger | 2016-11-29 09:38:22 UTC | Blocks | 1314477 | |
| Tomas Hoger | 2016-11-30 21:45:26 UTC | Fixed In Version | jasper 1.900.5 | jasper 1.900.9 |
| Summary | CVE-2016-8690 jasper: Null pointer dereference in bmp_getdata triggered by crafted BMP image | CVE-2016-8690 CVE-2016-8884 CVE-2016-8885 jasper: missing jas_matrix_create() parameter checks | ||
| Alias | CVE-2016-8884, CVE-2016-8885 | |||
| Whiteboard | impact=moderate,public=20161015,reported=20161015,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-476,rhel-5/netpbm=new,rhel-6/jasper=new,rhel-7/jasper=new,openshift-enterprise-2/jasper=new,rhev-m-3/mingw-virt-viewer=new,fedora-all/jasper=affected,fedora-all/mingw-jasper=affected,epel-5/jasper=affected,epel-7/mingw-jasper=affected | impact=moderate,public=20161015,reported=20161015,source=oss-security,cvss2=AV:N/AC:H/Au:N/C:P/I:P/A:P,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H,cwe=CWE-20,rhel-5/netpbm=wontfix,rhel-6/jasper=affected,rhel-7/jasper=affected,rhev-m-3/mingw-virt-viewer=wontfix,fedora-all/jasper=affected,fedora-all/mingw-jasper=affected,epel-5/jasper=affected,epel-7/mingw-jasper=affected | ||
| Tomas Hoger | 2016-11-30 22:23:56 UTC | Whiteboard | impact=moderate,public=20161015,reported=20161015,source=oss-security,cvss2=AV:N/AC:H/Au:N/C:P/I:P/A:P,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H,cwe=CWE-20,rhel-5/netpbm=wontfix,rhel-6/jasper=affected,rhel-7/jasper=affected,rhev-m-3/mingw-virt-viewer=wontfix,fedora-all/jasper=affected,fedora-all/mingw-jasper=affected,epel-5/jasper=affected,epel-7/mingw-jasper=affected | impact=moderate,public=20161015,reported=20161015,source=oss-security,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H,cwe=CWE-20,rhel-5/netpbm=wontfix,rhel-6/jasper=affected,rhel-7/jasper=affected,rhev-m-3/mingw-virt-viewer=wontfix,fedora-all/jasper=affected,fedora-all/mingw-jasper=affected,epel-5/jasper=affected,epel-7/mingw-jasper=affected |
| Tomas Hoger | 2017-04-05 11:25:06 UTC | Depends On | 1439171, 1439172, 1439174, 1439173 | |
| Tomas Hoger | 2017-05-09 21:43:53 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2017-05-09 17:43:53 UTC | |||
| Gil Klein | 2019-04-28 11:09:12 UTC | CC | gklein | |
| Product Security DevOps Team | 2019-09-29 13:57:57 UTC | Whiteboard | impact=moderate,public=20161015,reported=20161015,source=oss-security,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H,cwe=CWE-20,rhel-5/netpbm=wontfix,rhel-6/jasper=affected,rhel-7/jasper=affected,rhev-m-3/mingw-virt-viewer=wontfix,fedora-all/jasper=affected,fedora-all/mingw-jasper=affected,epel-5/jasper=affected,epel-7/mingw-jasper=affected |
Back to bug 1385499