Vulnerabilities

CVE-2016-8884

by Fred · 28/03/2017

The bmp_getdata function in libjasper/bmp/bmp_dec.c in JasPer 1.900.5 allows remote attackers to cause a denial of service (NULL pointer dereference) by calling the imginfo command with a crafted BMP image. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-8690.

Date published : 2017-03-28

http://www.securityfocus.com/bid/93834

https://bugzilla.redhat.com/show_bug.cgi?id=1385499

Similar

Tags: Cybersecurity Alert