CVE Vulnerabilities

CVE-2008-3520

Published: Oct 02, 2008 | Modified: Sep 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
6.8 MODERATE
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V3
Ubuntu

Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.

Affected Software

Name Vendor Start Version End Version
Jasper Jasper_project 1.900.1 1.900.1
Red Hat Enterprise Linux 4 RedHat netpbm-0:10.25-2.1.el4_7.4 *
Red Hat Enterprise Linux 5 RedHat netpbm-0:10.35-6.1.el5_3.1 *
RHEV Manager version 3.5 RedHat spice-client-msi-0:3.5-3 *
Ghostscript Ubuntu hardy *
Ghostscript Ubuntu lucid *
Ghostscript Ubuntu maverick *
Jasper Ubuntu dapper *
Jasper Ubuntu feisty *
Jasper Ubuntu gutsy *
Jasper Ubuntu hardy *
Jasper Ubuntu intrepid *
Jasper Ubuntu upstream *

References