CVE-2014-8137 - Double free vulnerability in the jas_iccattrval_destroy function in JasPer 1.900.1 and earlier allow

CVE-2014-8137

Summary

Double free vulnerability in the jas_iccattrval_destroy function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted ICC color profile in a JPEG 2000 image file. <a href="http://cwe.mitre.org/data/definitions/415.html">CWE-415: Double Free</a>

References

Vulnerable Configurations

cpe:2.3:a:jasper_project:jasper:-:*:*:*:*:*:*:*
cpe:2.3:a:jasper_project:jasper:-:*:*:*:*:*:*:*
cpe:2.3:a:jasper_project:jasper:1.900.1:*:*:*:*:*:*:*
cpe:2.3:a:jasper_project:jasper:1.900.1:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*

CVSS

Base:	6.8 (as of 05-01-2018 - 02:29)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:N/C:P/I:P/A:P

redhat via4

advisories

rhsa
id RHSA-2014:2021
rhsa
id RHSA-2015:0698
rhsa
id RHSA-2015:1713

rpms

jasper-0:1.900.1-16.el6_6.2
jasper-0:1.900.1-26.el7_0.2
jasper-debuginfo-0:1.900.1-16.el6_6.2
jasper-debuginfo-0:1.900.1-26.el7_0.2
jasper-devel-0:1.900.1-16.el6_6.2
jasper-devel-0:1.900.1-26.el7_0.2
jasper-libs-0:1.900.1-16.el6_6.2
jasper-libs-0:1.900.1-26.el7_0.2
jasper-utils-0:1.900.1-16.el6_6.2
jasper-utils-0:1.900.1-26.el7_0.2
rhevm-spice-client-x64-cab-0:3.5-3.el6
rhevm-spice-client-x64-msi-0:3.5-3.el6
rhevm-spice-client-x86-cab-0:3.5-3.el6
rhevm-spice-client-x86-msi-0:3.5-3.el6
rhev-hypervisor6-0:6.7-20150828.0.el6ev
rhev-hypervisor7-0:7.1-20150827.1.el6ev
rhev-hypervisor7-0:7.1-20150827.1.el7ev

refmap via4

bid	71742
confirm	http://advisories.mageia.org/MGASA-2014-0539.html
debian	DSA-3106
mandriva	MDVSA-2015:012 MDVSA-2015:159
misc	http://packetstormsecurity.com/files/129660/JasPer-1.900.1-Double-Free-Heap-Overflow.html https://www.ocert.org/advisories/ocert-2014-012.html
sectrack	1033459
secunia	61747 62311 62615 62619
slackware	SSA:2015-302-02
suse	openSUSE-SU-2015:0038 openSUSE-SU-2015:0039 openSUSE-SU-2015:0042
ubuntu	USN-2483-1 USN-2483-2

Last major update

05-01-2018 - 02:29

Published

24-12-2014 - 18:59

Last modified

05-01-2018 - 02:29