Back to bug 1388880
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Adam Mariš | 2016-10-26 10:59:06 UTC | Blocks | 1388871 | |
| Adam Mariš | 2016-10-26 10:59:53 UTC | Depends On | 1388873 | |
| Adam Mariš | 2016-10-26 10:59:59 UTC | Depends On | 1388874 | |
| Adam Mariš | 2016-10-26 11:00:06 UTC | Depends On | 1388875 | |
| Adam Mariš | 2016-10-26 11:00:11 UTC | Depends On | 1388876 | |
| Adam Mariš | 2016-10-27 08:05:50 UTC | Whiteboard | impact=low,public=20161018,reported=20161018,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=4.0/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-789,rhel-5/netpbm=new,rhel-6/jasper=new,rhel-7/jasper=new,openshift-enterprise-2/jasper=new,rhev-m-3/mingw-virt-viewer=new,fedora-all/jasper=affected,fedora-all/mingw-jasper=affected,epel-5/jasper=affected,epel-7/mingw-jasper=affected | impact=low,public=20161018,reported=20161018,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=4.0/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-770,rhel-5/netpbm=new,rhel-6/jasper=new,rhel-7/jasper=new,openshift-enterprise-2/jasper=new,rhev-m-3/mingw-virt-viewer=new,fedora-all/jasper=affected,fedora-all/mingw-jasper=affected,epel-5/jasper=affected,epel-7/mingw-jasper=affected |
| Tomas Hoger | 2016-11-29 09:39:38 UTC | Blocks | 1388871 | |
| Tomas Hoger | 2016-11-29 09:42:43 UTC | Blocks | 1314477 | |
| Tomas Hoger | 2017-03-29 19:38:05 UTC | Status | NEW | CLOSED |
| Resolution | --- | WONTFIX | ||
| Summary | CVE-2016-8886 jasper: memory allocation failure in jas_malloc | CVE-2016-8886 jasper: no upper limit on memory allocations in jas_malloc() | ||
| Whiteboard | impact=low,public=20161018,reported=20161018,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=4.0/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-770,rhel-5/netpbm=new,rhel-6/jasper=new,rhel-7/jasper=new,openshift-enterprise-2/jasper=new,rhev-m-3/mingw-virt-viewer=new,fedora-all/jasper=affected,fedora-all/mingw-jasper=affected,epel-5/jasper=affected,epel-7/mingw-jasper=affected | impact=low,public=20161018,reported=20161018,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L,cwe=CWE-770,rhel-5/netpbm=wontfix,rhel-6/jasper=wontfix,rhel-7/jasper=wontfix,rhev-m-3/mingw-virt-viewer=wontfix,fedora-all/jasper=affected,fedora-all/mingw-jasper=affected,epel-5/jasper=affected,epel-7/mingw-jasper=affected | ||
| Last Closed | 2017-03-29 15:38:05 UTC | |||
| Tomas Hoger | 2017-03-29 19:39:27 UTC | Fixed In Version | jasper 1.900.11 | |
| Product Security DevOps Team | 2019-09-29 13:58:49 UTC | Whiteboard | impact=low,public=20161018,reported=20161018,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L,cwe=CWE-770,rhel-5/netpbm=wontfix,rhel-6/jasper=wontfix,rhel-7/jasper=wontfix,rhev-m-3/mingw-virt-viewer=wontfix,fedora-all/jasper=affected,fedora-all/mingw-jasper=affected,epel-5/jasper=affected,epel-7/mingw-jasper=affected |
Back to bug 1388880