Back to bug 1388840
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Adam Mariš | 2016-10-26 10:48:02 UTC | Blocks | 1388871 | |
| Adam Mariš | 2016-10-26 10:49:41 UTC | Depends On | 1388873 | |
| Adam Mariš | 2016-10-26 10:49:51 UTC | Depends On | 1388874 | |
| Adam Mariš | 2016-10-26 10:50:00 UTC | Depends On | 1388875 | |
| Adam Mariš | 2016-10-26 10:50:10 UTC | Depends On | 1388876 | |
| Slawomir Czarko | 2016-10-27 10:19:11 UTC | CC | slawomir | |
| Tomas Hoger | 2016-11-29 09:39:38 UTC | Blocks | 1388871 | |
| Tomas Hoger | 2016-11-29 09:42:43 UTC | Blocks | 1314477 | |
| Tomas Hoger | 2017-03-24 13:59:48 UTC | Summary | jasper: Heap-based buffer overflow in jpc_dec_tiledecode | CVE-2016-10249 jasper: heap-based buffer overflow in jpc_dec_tiledecode() |
| Alias | CVE-2016-10249 | |||
| Tomas Hoger | 2017-03-31 13:08:37 UTC | Priority | low | medium |
| Summary | CVE-2016-10249 jasper: heap-based buffer overflow in jpc_dec_tiledecode() | CVE-2016-10249 jasper: integer overflow in jas_matrix_create() | ||
| Whiteboard | impact=low,public=20161023,reported=20161023,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=4.0/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-476,rhel-5/netpbm=new,rhel-6/jasper=new,rhel-7/jasper=new,openshift-enterprise-2/jasper=new,rhev-m-3/mingw-virt-viewer=new,fedora-all/jasper=affected,fedora-all/mingw-jasper=affected,epel-5/jasper=affected,epel-7/mingw-jasper=affected | impact=moderate,public=20161023,reported=20161023,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=7.8/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,rhel-5/netpbm=wontfix,rhel-6/jasper=affected,rhel-7/jasper=affected,rhev-m-3/mingw-virt-viewer=affected,fedora-all/jasper=affected,fedora-all/mingw-jasper=affected,epel-5/jasper=affected,epel-7/mingw-jasper=affected | ||
| Severity | low | medium | ||
| Tomas Hoger | 2017-03-31 13:11:19 UTC | Priority | medium | low |
| Whiteboard | impact=moderate,public=20161023,reported=20161023,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=7.8/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,rhel-5/netpbm=wontfix,rhel-6/jasper=affected,rhel-7/jasper=affected,rhev-m-3/mingw-virt-viewer=affected,fedora-all/jasper=affected,fedora-all/mingw-jasper=affected,epel-5/jasper=affected,epel-7/mingw-jasper=affected | impact=low,public=20161023,reported=20161023,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=5.5/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H,cwe=CWE-190->CWE-122,rhel-5/netpbm=wontfix,rhel-6/jasper=affected,rhel-7/jasper=affected,rhev-m-3/mingw-virt-viewer=wontfix,fedora-all/jasper=affected,fedora-all/mingw-jasper=affected,epel-5/jasper=affected,epel-7/mingw-jasper=affected | ||
| Severity | medium | low | ||
| Tomas Hoger | 2017-03-31 13:53:24 UTC | Priority | low | medium |
| Whiteboard | impact=low,public=20161023,reported=20161023,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=5.5/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H,cwe=CWE-190->CWE-122,rhel-5/netpbm=wontfix,rhel-6/jasper=affected,rhel-7/jasper=affected,rhev-m-3/mingw-virt-viewer=wontfix,fedora-all/jasper=affected,fedora-all/mingw-jasper=affected,epel-5/jasper=affected,epel-7/mingw-jasper=affected | impact=moderate,public=20161023,reported=20161023,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=7.8/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,rhel-5/netpbm=wontfix,rhel-6/jasper=affected,rhel-7/jasper=affected,rhev-m-3/mingw-virt-viewer=affected,fedora-all/jasper=affected,fedora-all/mingw-jasper=affected,epel-5/jasper=affected,epel-7/mingw-jasper=affected | ||
| Severity | low | medium | ||
| Tomas Hoger | 2017-04-05 11:11:53 UTC | Priority | medium | high |
| Whiteboard | impact=moderate,public=20161023,reported=20161023,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=7.8/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,rhel-5/netpbm=wontfix,rhel-6/jasper=affected,rhel-7/jasper=affected,rhev-m-3/mingw-virt-viewer=affected,fedora-all/jasper=affected,fedora-all/mingw-jasper=affected,epel-5/jasper=affected,epel-7/mingw-jasper=affected | impact=important,public=20161023,reported=20161023,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=7.8/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,rhel-5/netpbm=wontfix,rhel-6/jasper=affected,rhel-7/jasper=affected,rhev-m-3/mingw-virt-viewer=affected,fedora-all/jasper=affected,fedora-all/mingw-jasper=affected,epel-5/jasper=affected,epel-7/mingw-jasper=affected | ||
| Severity | medium | high | ||
| Tomas Hoger | 2017-04-05 11:26:21 UTC | Depends On | 1439171, 1439172, 1439174, 1439173 | |
| Tomas Hoger | 2017-05-09 21:43:07 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2017-05-09 17:43:07 UTC | |||
| Gil Klein | 2019-04-28 13:40:46 UTC | CC | gklein | |
| Product Security DevOps Team | 2019-09-29 13:58:49 UTC | Whiteboard | impact=important,public=20161023,reported=20161023,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=7.8/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,rhel-5/netpbm=wontfix,rhel-6/jasper=affected,rhel-7/jasper=affected,rhev-m-3/mingw-virt-viewer=affected,fedora-all/jasper=affected,fedora-all/mingw-jasper=affected,epel-5/jasper=affected,epel-7/mingw-jasper=affected |
Back to bug 1388840