Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2018-0281)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.10.2018.0281

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2018-0281)

Resumen: The remote host is missing an update for the 'jasper' package(s) announced via the MGASA-2018-0281 advisory.

Descripción: Summary:
The remote host is missing an update for the 'jasper' package(s) announced via the MGASA-2018-0281 advisory.

Vulnerability Insight:
Updated japser packages fix security vulnerabilities:

An assertion failure was possible to trigger in JPC_NOMINALGAIN
(CVE-2016-9396).

Denial of service via a reachable assertion in the function jpc_firstone in
libjasper/jpc/jpc_math.c could lead to denial of service (CVE-2018-9055).

Affected Software/OS:
'jasper' package(s) on Mageia 5, Mageia 6.

Solution:
Please install the updated package(s).

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2016-9396
BugTraq ID: 94379
http://www.securityfocus.com/bid/94379
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/N4ALB4SXHURLVWKAOKYRNJXPABW3M22M/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UPOVZTSIQPW2H4AFLMI3LHJEZGBVEQET/
https://blogs.gentoo.org/ago/2016/11/16/jasper-multiple-assertion-failure
https://bugzilla.redhat.com/show_bug.cgi?id=1485272
http://www.openwall.com/lists/oss-security/2016/11/17/1
RedHat Security Advisories: RHSA-2018:3253
https://access.redhat.com/errata/RHSA-2018:3253
RedHat Security Advisories: RHSA-2018:3505
https://access.redhat.com/errata/RHSA-2018:3505
SuSE Security Announcement: openSUSE-SU-2019:1315 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00004.html
https://usn.ubuntu.com/3693-1/
Common Vulnerability Exposure (CVE) ID: CVE-2018-9055
BugTraq ID: 103577
http://www.securityfocus.com/bid/103577
https://security.gentoo.org/glsa/201908-03
https://github.com/mdadams/jasper/issues/172
https://www.oracle.com/security-alerts/cpuapr2020.html

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2018.0281
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2018-0281)
Resumen:	The remote host is missing an update for the 'jasper' package(s) announced via the MGASA-2018-0281 advisory.
Descripción:	Summary: The remote host is missing an update for the 'jasper' package(s) announced via the MGASA-2018-0281 advisory. Vulnerability Insight: Updated japser packages fix security vulnerabilities: An assertion failure was possible to trigger in JPC_NOMINALGAIN (CVE-2016-9396). Denial of service via a reachable assertion in the function jpc_firstone in libjasper/jpc/jpc_math.c could lead to denial of service (CVE-2018-9055). Affected Software/OS: 'jasper' package(s) on Mageia 5, Mageia 6. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-9396 BugTraq ID: 94379 http://www.securityfocus.com/bid/94379 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/N4ALB4SXHURLVWKAOKYRNJXPABW3M22M/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UPOVZTSIQPW2H4AFLMI3LHJEZGBVEQET/ https://blogs.gentoo.org/ago/2016/11/16/jasper-multiple-assertion-failure https://bugzilla.redhat.com/show_bug.cgi?id=1485272 http://www.openwall.com/lists/oss-security/2016/11/17/1 RedHat Security Advisories: RHSA-2018:3253 https://access.redhat.com/errata/RHSA-2018:3253 RedHat Security Advisories: RHSA-2018:3505 https://access.redhat.com/errata/RHSA-2018:3505 SuSE Security Announcement: openSUSE-SU-2019:1315 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00004.html https://usn.ubuntu.com/3693-1/ Common Vulnerability Exposure (CVE) ID: CVE-2018-9055 BugTraq ID: 103577 http://www.securityfocus.com/bid/103577 https://security.gentoo.org/glsa/201908-03 https://github.com/mdadams/jasper/issues/172 https://www.oracle.com/security-alerts/cpuapr2020.html
Copyright	Copyright (C) 2022 Greenbone AG