Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2008-3520
Vulnerability from cvelistv5
Published
2008-10-02 18:00
Modified
2024-08-07 09:45
Severity ?
EPSS score ?
Summary
Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.
References
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-07T09:45:18.495Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "31470", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/31470" }, { "name": "MDVSA-2009:164", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:164" }, { "name": "MDVSA-2009:144", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:144" }, { "name": "RHSA-2009:0012", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://www.redhat.com/support/errata/RHSA-2009-0012.html" }, { "name": "jasper-image-file-bo(45621)", "tags": [ "vdb-entry", "x_refsource_XF", "x_transferred" ], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45621" }, { "name": "34391", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/34391" }, { "name": "oval:org.mitre.oval:def:10141", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10141" }, { "name": "MDVSA-2009:142", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:142" }, { "tags": [ "x_refsource_MISC", "x_transferred" ], "url": "http://bugs.gentoo.org/show_bug.cgi?id=222819" }, { "name": "USN-742-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred" ], "url": "http://www.ubuntu.com/usn/USN-742-1" }, { "name": "RHSA-2015:0698", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://rhn.redhat.com/errata/RHSA-2015-0698.html" }, { "name": "33173", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/33173" }, { "name": "GLSA-200812-18", "tags": [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred" ], "url": "http://security.gentoo.org/glsa/glsa-200812-18.xml" }, { "name": "SSA:2015-302-02", "tags": [ "vendor-advisory", "x_refsource_SLACKWARE", "x_transferred" ], "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2008-09-29T00:00:00", "descriptions": [ { "lang": "en", "value": "Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2017-09-28T12:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat" }, "references": [ { "name": "31470", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/31470" }, { "name": "MDVSA-2009:164", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:164" }, { "name": "MDVSA-2009:144", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:144" }, { "name": "RHSA-2009:0012", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://www.redhat.com/support/errata/RHSA-2009-0012.html" }, { "name": "jasper-image-file-bo(45621)", "tags": [ "vdb-entry", "x_refsource_XF" ], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45621" }, { "name": "34391", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/34391" }, { "name": "oval:org.mitre.oval:def:10141", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10141" }, { "name": "MDVSA-2009:142", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:142" }, { "tags": [ "x_refsource_MISC" ], "url": "http://bugs.gentoo.org/show_bug.cgi?id=222819" }, { "name": "USN-742-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU" ], "url": "http://www.ubuntu.com/usn/USN-742-1" }, { "name": "RHSA-2015:0698", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://rhn.redhat.com/errata/RHSA-2015-0698.html" }, { "name": "33173", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/33173" }, { "name": "GLSA-200812-18", "tags": [ "vendor-advisory", "x_refsource_GENTOO" ], "url": "http://security.gentoo.org/glsa/glsa-200812-18.xml" }, { "name": "SSA:2015-302-02", "tags": [ "vendor-advisory", "x_refsource_SLACKWARE" ], "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2008-3520", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "31470", "refsource": "BID", "url": "http://www.securityfocus.com/bid/31470" }, { "name": "MDVSA-2009:164", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:164" }, { "name": "MDVSA-2009:144", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:144" }, { "name": "RHSA-2009:0012", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2009-0012.html" }, { "name": "jasper-image-file-bo(45621)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45621" }, { "name": "34391", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/34391" }, { "name": "oval:org.mitre.oval:def:10141", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10141" }, { "name": "MDVSA-2009:142", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:142" }, { "name": "http://bugs.gentoo.org/show_bug.cgi?id=222819", "refsource": "MISC", "url": "http://bugs.gentoo.org/show_bug.cgi?id=222819" }, { "name": "USN-742-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/USN-742-1" }, { "name": "RHSA-2015:0698", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2015-0698.html" }, { "name": "33173", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/33173" }, { "name": "GLSA-200812-18", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-200812-18.xml" }, { "name": "SSA:2015-302-02", "refsource": "SLACKWARE", "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606" } ] } } } }, "cveMetadata": { "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2008-3520", "datePublished": "2008-10-02T18:00:00", "dateReserved": "2008-08-07T00:00:00", "dateUpdated": "2024-08-07T09:45:18.495Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2008-3520\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2008-10-02T18:18:05.743\",\"lastModified\":\"2024-11-21T00:49:27.020\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.\"},{\"lang\":\"es\",\"value\":\"M\u00faltiples desbordamientos de entero en JasPer v1.900.1 pueden permitir a atacantes dependientes de contexto tener un impacto desconocido a trav\u00e9s de ficheros de imagen manipuladas, relacionado con la multiplicaci\u00f3n de enteros para localizaciones de memoria.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":9.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.6,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-189\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jasper_project:jasper:1.900.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"79C699BE-8585-4A07-88AE-E17CF17D92CD\"}]}]}],\"references\":[{\"url\":\"http://bugs.gentoo.org/show_bug.cgi?id=222819\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2015-0698.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/33173\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/34391\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://security.gentoo.org/glsa/glsa-200812-18.xml\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2009:142\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2009:144\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2009:164\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2009-0012.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/bid/31470\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.ubuntu.com/usn/USN-742-1\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/45621\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10141\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://bugs.gentoo.org/show_bug.cgi?id=222819\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2015-0698.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/33173\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/34391\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://security.gentoo.org/glsa/glsa-200812-18.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2009:142\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2009:144\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2009:164\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2009-0012.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/31470\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ubuntu.com/usn/USN-742-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/45621\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10141\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}" } }
gsd-2008-3520
Vulnerability from gsd
Modified
2023-12-13 01:23
Details
Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.
Aliases
Aliases
{ "GSD": { "alias": "CVE-2008-3520", "description": "Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.", "id": "GSD-2008-3520", "references": [ "https://www.suse.com/security/cve/CVE-2008-3520.html", "https://access.redhat.com/errata/RHSA-2015:0698", "https://access.redhat.com/errata/RHSA-2009:0012", "https://security.archlinux.org/CVE-2008-3520", "https://linux.oracle.com/cve/CVE-2008-3520.html" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2008-3520" ], "details": "Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.", "id": "GSD-2008-3520", "modified": "2023-12-13T01:23:05.161841Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2008-3520", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "31470", "refsource": "BID", "url": "http://www.securityfocus.com/bid/31470" }, { "name": "MDVSA-2009:164", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:164" }, { "name": "MDVSA-2009:144", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:144" }, { "name": "RHSA-2009:0012", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2009-0012.html" }, { "name": "jasper-image-file-bo(45621)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45621" }, { "name": "34391", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/34391" }, { "name": "oval:org.mitre.oval:def:10141", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10141" }, { "name": "MDVSA-2009:142", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:142" }, { "name": "http://bugs.gentoo.org/show_bug.cgi?id=222819", "refsource": "MISC", "url": "http://bugs.gentoo.org/show_bug.cgi?id=222819" }, { "name": "USN-742-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/USN-742-1" }, { "name": "RHSA-2015:0698", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2015-0698.html" }, { "name": "33173", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/33173" }, { "name": "GLSA-200812-18", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-200812-18.xml" }, { "name": "SSA:2015-302-02", "refsource": "SLACKWARE", "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:jasper_project:jasper:1.900.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2008-3520" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "CWE-189" } ] } ] }, "references": { "reference_data": [ { "name": "http://bugs.gentoo.org/show_bug.cgi?id=222819", "refsource": "MISC", "tags": [ "Patch" ], "url": "http://bugs.gentoo.org/show_bug.cgi?id=222819" }, { "name": "31470", "refsource": "BID", "tags": [ "Patch" ], "url": "http://www.securityfocus.com/bid/31470" }, { "name": "GLSA-200812-18", "refsource": "GENTOO", "tags": [], "url": "http://security.gentoo.org/glsa/glsa-200812-18.xml" }, { "name": "33173", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/33173" }, { "name": "RHSA-2009:0012", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2009-0012.html" }, { "name": "USN-742-1", "refsource": "UBUNTU", "tags": [], "url": "http://www.ubuntu.com/usn/USN-742-1" }, { "name": "34391", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/34391" }, { "name": "MDVSA-2009:142", "refsource": "MANDRIVA", "tags": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:142" }, { "name": "MDVSA-2009:144", "refsource": "MANDRIVA", "tags": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:144" }, { "name": "MDVSA-2009:164", "refsource": "MANDRIVA", "tags": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:164" }, { "name": "RHSA-2015:0698", "refsource": "REDHAT", "tags": [], "url": "http://rhn.redhat.com/errata/RHSA-2015-0698.html" }, { "name": "SSA:2015-302-02", "refsource": "SLACKWARE", "tags": [], "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606" }, { "name": "jasper-image-file-bo(45621)", "refsource": "XF", "tags": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45621" }, { "name": "oval:org.mitre.oval:def:10141", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10141" } ] } }, "impact": { "baseMetricV2": { "cvssV2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0" }, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": true } }, "lastModifiedDate": "2017-09-29T01:31Z", "publishedDate": "2008-10-02T18:18Z" } } }
rhsa-2009_0012
Vulnerability from csaf_redhat
Published
2009-02-11 16:51
Modified
2024-11-22 02:25
Summary
Red Hat Security Advisory: netpbm security update
Notes
Topic
Updated netpbm packages that fix several security issues are now available
for Red Hat Enterprise Linux 4 and 5.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
Details
The netpbm package contains a library of functions for editing and
converting between various graphics file formats, including .pbm (portable
bitmaps), .pgm (portable graymaps), .pnm (portable anymaps), .ppm (portable
pixmaps), and others.
An input validation flaw and multiple integer overflows were discovered in
the JasPer library providing support for JPEG-2000 image format and used in
the jpeg2ktopam and pamtojpeg2k converters. An attacker could create a
carefully-crafted JPEG file which could cause jpeg2ktopam to crash or,
possibly, execute arbitrary code as the user running jpeg2ktopam.
(CVE-2007-2721, CVE-2008-3520)
All users are advised to upgrade to these updated packages which contain
backported patches which resolve these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated netpbm packages that fix several security issues are now available\nfor Red Hat Enterprise Linux 4 and 5.\n\nThis update has been rated as having moderate security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "The netpbm package contains a library of functions for editing and\nconverting between various graphics file formats, including .pbm (portable\nbitmaps), .pgm (portable graymaps), .pnm (portable anymaps), .ppm (portable\npixmaps), and others.\n\nAn input validation flaw and multiple integer overflows were discovered in\nthe JasPer library providing support for JPEG-2000 image format and used in\nthe jpeg2ktopam and pamtojpeg2k converters. An attacker could create a\ncarefully-crafted JPEG file which could cause jpeg2ktopam to crash or,\npossibly, execute arbitrary code as the user running jpeg2ktopam.\n(CVE-2007-2721, CVE-2008-3520)\n\nAll users are advised to upgrade to these updated packages which contain\nbackported patches which resolve these issues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2009:0012", "url": "https://access.redhat.com/errata/RHSA-2009:0012" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "346501", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=346501" }, { "category": "external", "summary": "461476", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=461476" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2009/rhsa-2009_0012.json" } ], "title": "Red Hat Security Advisory: netpbm security update", "tracking": { "current_release_date": "2024-11-22T02:25:56+00:00", "generator": { "date": "2024-11-22T02:25:56+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2009:0012", "initial_release_date": "2009-02-11T16:51:00+00:00", "revision_history": [ { "date": "2009-02-11T16:51:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2009-02-11T11:53:08+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T02:25:56+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client_workstation" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux AS version 4", "product": { "name": "Red Hat Enterprise Linux AS version 4", "product_id": "4AS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::as" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop version 4", "product": { "name": "Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::desktop" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ES version 4", "product": { "name": "Red Hat Enterprise Linux ES version 4", "product_id": "4ES", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::es" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux WS version 4", "product": { "name": "Red Hat Enterprise Linux WS version 4", "product_id": "4WS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::ws" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "product": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "product_id": "netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-devel@10.35-6.1.el5_3.1?arch=x86_64" } } }, { "category": "product_version", "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "product": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "product_id": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-debuginfo@10.35-6.1.el5_3.1?arch=x86_64" } } }, { "category": "product_version", "name": "netpbm-0:10.35-6.1.el5_3.1.x86_64", "product": { "name": "netpbm-0:10.35-6.1.el5_3.1.x86_64", "product_id": "netpbm-0:10.35-6.1.el5_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm@10.35-6.1.el5_3.1?arch=x86_64" } } }, { "category": "product_version", "name": "netpbm-progs-0:10.35-6.1.el5_3.1.x86_64", "product": { "name": "netpbm-progs-0:10.35-6.1.el5_3.1.x86_64", "product_id": "netpbm-progs-0:10.35-6.1.el5_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-progs@10.35-6.1.el5_3.1?arch=x86_64" } } }, { "category": "product_version", "name": "netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "product": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "product_id": "netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-devel@10.25-2.1.el4_7.4?arch=x86_64" } } }, { "category": "product_version", "name": "netpbm-0:10.25-2.1.el4_7.4.x86_64", "product": { "name": "netpbm-0:10.25-2.1.el4_7.4.x86_64", "product_id": "netpbm-0:10.25-2.1.el4_7.4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm@10.25-2.1.el4_7.4?arch=x86_64" } } }, { "category": "product_version", "name": "netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "product": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "product_id": "netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-progs@10.25-2.1.el4_7.4?arch=x86_64" } } }, { "category": "product_version", "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "product": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "product_id": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-debuginfo@10.25-2.1.el4_7.4?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "netpbm-devel-0:10.35-6.1.el5_3.1.i386", "product": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.i386", "product_id": "netpbm-devel-0:10.35-6.1.el5_3.1.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-devel@10.35-6.1.el5_3.1?arch=i386" } } }, { "category": "product_version", "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "product": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "product_id": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-debuginfo@10.35-6.1.el5_3.1?arch=i386" } } }, { "category": "product_version", "name": "netpbm-0:10.35-6.1.el5_3.1.i386", "product": { "name": "netpbm-0:10.35-6.1.el5_3.1.i386", "product_id": "netpbm-0:10.35-6.1.el5_3.1.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm@10.35-6.1.el5_3.1?arch=i386" } } }, { "category": "product_version", "name": "netpbm-progs-0:10.35-6.1.el5_3.1.i386", "product": { "name": "netpbm-progs-0:10.35-6.1.el5_3.1.i386", "product_id": "netpbm-progs-0:10.35-6.1.el5_3.1.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-progs@10.35-6.1.el5_3.1?arch=i386" } } }, { "category": "product_version", "name": "netpbm-0:10.25-2.1.el4_7.4.i386", "product": { "name": "netpbm-0:10.25-2.1.el4_7.4.i386", "product_id": "netpbm-0:10.25-2.1.el4_7.4.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm@10.25-2.1.el4_7.4?arch=i386" } } }, { "category": "product_version", "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "product": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "product_id": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-debuginfo@10.25-2.1.el4_7.4?arch=i386" } } }, { "category": "product_version", "name": "netpbm-devel-0:10.25-2.1.el4_7.4.i386", "product": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.i386", "product_id": "netpbm-devel-0:10.25-2.1.el4_7.4.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-devel@10.25-2.1.el4_7.4?arch=i386" } } }, { "category": "product_version", "name": "netpbm-progs-0:10.25-2.1.el4_7.4.i386", "product": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.i386", "product_id": "netpbm-progs-0:10.25-2.1.el4_7.4.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-progs@10.25-2.1.el4_7.4?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "netpbm-0:10.35-6.1.el5_3.1.src", "product": { "name": "netpbm-0:10.35-6.1.el5_3.1.src", "product_id": "netpbm-0:10.35-6.1.el5_3.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm@10.35-6.1.el5_3.1?arch=src" } } }, { "category": "product_version", "name": "netpbm-0:10.25-2.1.el4_7.4.src", "product": { "name": "netpbm-0:10.25-2.1.el4_7.4.src", "product_id": "netpbm-0:10.25-2.1.el4_7.4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm@10.25-2.1.el4_7.4?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "product": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "product_id": "netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-devel@10.35-6.1.el5_3.1?arch=ia64" } } }, { "category": "product_version", "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "product": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "product_id": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-debuginfo@10.35-6.1.el5_3.1?arch=ia64" } } }, { "category": "product_version", "name": "netpbm-0:10.35-6.1.el5_3.1.ia64", "product": { "name": "netpbm-0:10.35-6.1.el5_3.1.ia64", "product_id": "netpbm-0:10.35-6.1.el5_3.1.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm@10.35-6.1.el5_3.1?arch=ia64" } } }, { "category": "product_version", "name": "netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "product": { "name": "netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "product_id": "netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-progs@10.35-6.1.el5_3.1?arch=ia64" } } }, { "category": "product_version", "name": "netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "product": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "product_id": "netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-devel@10.25-2.1.el4_7.4?arch=ia64" } } }, { "category": "product_version", "name": "netpbm-0:10.25-2.1.el4_7.4.ia64", "product": { "name": "netpbm-0:10.25-2.1.el4_7.4.ia64", "product_id": "netpbm-0:10.25-2.1.el4_7.4.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm@10.25-2.1.el4_7.4?arch=ia64" } } }, { "category": "product_version", "name": "netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "product": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "product_id": "netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-progs@10.25-2.1.el4_7.4?arch=ia64" } } }, { "category": "product_version", "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "product": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "product_id": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-debuginfo@10.25-2.1.el4_7.4?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "product": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "product_id": "netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-devel@10.35-6.1.el5_3.1?arch=ppc64" } } }, { "category": "product_version", "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "product": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "product_id": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-debuginfo@10.35-6.1.el5_3.1?arch=ppc64" } } }, { "category": "product_version", "name": "netpbm-0:10.35-6.1.el5_3.1.ppc64", "product": { "name": "netpbm-0:10.35-6.1.el5_3.1.ppc64", "product_id": "netpbm-0:10.35-6.1.el5_3.1.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm@10.35-6.1.el5_3.1?arch=ppc64" } } }, { "category": "product_version", "name": "netpbm-0:10.25-2.1.el4_7.4.ppc64", "product": { "name": "netpbm-0:10.25-2.1.el4_7.4.ppc64", "product_id": "netpbm-0:10.25-2.1.el4_7.4.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm@10.25-2.1.el4_7.4?arch=ppc64" } } }, { "category": "product_version", "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "product": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "product_id": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-debuginfo@10.25-2.1.el4_7.4?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "product": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "product_id": "netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-devel@10.35-6.1.el5_3.1?arch=ppc" } } }, { "category": "product_version", "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "product": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "product_id": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-debuginfo@10.35-6.1.el5_3.1?arch=ppc" } } }, { "category": "product_version", "name": "netpbm-0:10.35-6.1.el5_3.1.ppc", "product": { "name": "netpbm-0:10.35-6.1.el5_3.1.ppc", "product_id": "netpbm-0:10.35-6.1.el5_3.1.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm@10.35-6.1.el5_3.1?arch=ppc" } } }, { "category": "product_version", "name": "netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "product": { "name": "netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "product_id": "netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-progs@10.35-6.1.el5_3.1?arch=ppc" } } }, { "category": "product_version", "name": "netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "product": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "product_id": "netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-devel@10.25-2.1.el4_7.4?arch=ppc" } } }, { "category": "product_version", "name": "netpbm-0:10.25-2.1.el4_7.4.ppc", "product": { "name": "netpbm-0:10.25-2.1.el4_7.4.ppc", "product_id": "netpbm-0:10.25-2.1.el4_7.4.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm@10.25-2.1.el4_7.4?arch=ppc" } } }, { "category": "product_version", "name": "netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "product": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "product_id": "netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-progs@10.25-2.1.el4_7.4?arch=ppc" } } }, { "category": "product_version", "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "product": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "product_id": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-debuginfo@10.25-2.1.el4_7.4?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "product": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "product_id": "netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-devel@10.35-6.1.el5_3.1?arch=s390x" } } }, { "category": "product_version", "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "product": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "product_id": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-debuginfo@10.35-6.1.el5_3.1?arch=s390x" } } }, { "category": "product_version", "name": "netpbm-0:10.35-6.1.el5_3.1.s390x", "product": { "name": "netpbm-0:10.35-6.1.el5_3.1.s390x", "product_id": "netpbm-0:10.35-6.1.el5_3.1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm@10.35-6.1.el5_3.1?arch=s390x" } } }, { "category": "product_version", "name": "netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "product": { "name": "netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "product_id": "netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-progs@10.35-6.1.el5_3.1?arch=s390x" } } }, { "category": "product_version", "name": "netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "product": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "product_id": "netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-devel@10.25-2.1.el4_7.4?arch=s390x" } } }, { "category": "product_version", "name": "netpbm-0:10.25-2.1.el4_7.4.s390x", "product": { "name": "netpbm-0:10.25-2.1.el4_7.4.s390x", "product_id": "netpbm-0:10.25-2.1.el4_7.4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm@10.25-2.1.el4_7.4?arch=s390x" } } }, { "category": "product_version", "name": "netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "product": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "product_id": "netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-progs@10.25-2.1.el4_7.4?arch=s390x" } } }, { "category": "product_version", "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "product": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "product_id": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-debuginfo@10.25-2.1.el4_7.4?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "netpbm-devel-0:10.35-6.1.el5_3.1.s390", "product": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.s390", "product_id": "netpbm-devel-0:10.35-6.1.el5_3.1.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-devel@10.35-6.1.el5_3.1?arch=s390" } } }, { "category": "product_version", "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "product": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "product_id": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-debuginfo@10.35-6.1.el5_3.1?arch=s390" } } }, { "category": "product_version", "name": "netpbm-0:10.35-6.1.el5_3.1.s390", "product": { "name": "netpbm-0:10.35-6.1.el5_3.1.s390", "product_id": "netpbm-0:10.35-6.1.el5_3.1.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm@10.35-6.1.el5_3.1?arch=s390" } } }, { "category": "product_version", "name": "netpbm-0:10.25-2.1.el4_7.4.s390", "product": { "name": "netpbm-0:10.25-2.1.el4_7.4.s390", "product_id": "netpbm-0:10.25-2.1.el4_7.4.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm@10.25-2.1.el4_7.4?arch=s390" } } }, { "category": "product_version", "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "product": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "product_id": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-debuginfo@10.25-2.1.el4_7.4?arch=s390" } } }, { "category": "product_version", "name": "netpbm-devel-0:10.25-2.1.el4_7.4.s390", "product": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.s390", "product_id": "netpbm-devel-0:10.25-2.1.el4_7.4.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-devel@10.25-2.1.el4_7.4?arch=s390" } } }, { "category": "product_version", "name": "netpbm-progs-0:10.25-2.1.el4_7.4.s390", "product": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.s390", "product_id": "netpbm-progs-0:10.25-2.1.el4_7.4.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/netpbm-progs@10.25-2.1.el4_7.4?arch=s390" } } } ], "category": "architecture", "name": "s390" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-0:10.25-2.1.el4_7.4.i386" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-0:10.25-2.1.el4_7.4.ia64" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-0:10.25-2.1.el4_7.4.ppc" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.ppc64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-0:10.25-2.1.el4_7.4.ppc64" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.ppc64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-0:10.25-2.1.el4_7.4.s390" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-0:10.25-2.1.el4_7.4.s390x" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.src as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-0:10.25-2.1.el4_7.4.src" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.src", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-0:10.25-2.1.el4_7.4.x86_64" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.i386" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.ia64" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.ppc" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.s390" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.s390x" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.i386" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.ia64" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.ppc" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.s390" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.s390x" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-0:10.25-2.1.el4_7.4.i386" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-0:10.25-2.1.el4_7.4.ia64" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-0:10.25-2.1.el4_7.4.ppc" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.ppc64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-0:10.25-2.1.el4_7.4.ppc64" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.ppc64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-0:10.25-2.1.el4_7.4.s390" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-0:10.25-2.1.el4_7.4.s390x" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.src as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-0:10.25-2.1.el4_7.4.src" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.src", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-0:10.25-2.1.el4_7.4.x86_64" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.i386" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.ia64" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.ppc" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.s390" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.s390x" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.i386" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.ia64" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.ppc" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.s390" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.s390x" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-0:10.25-2.1.el4_7.4.i386" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-0:10.25-2.1.el4_7.4.ia64" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-0:10.25-2.1.el4_7.4.ppc" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.ppc64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-0:10.25-2.1.el4_7.4.ppc64" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.ppc64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-0:10.25-2.1.el4_7.4.s390" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-0:10.25-2.1.el4_7.4.s390x" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.src as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-0:10.25-2.1.el4_7.4.src" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.src", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-0:10.25-2.1.el4_7.4.x86_64" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.i386" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.ia64" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.ppc" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.s390" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.s390x" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.i386" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.ia64" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.ppc" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.s390" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.s390x" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-0:10.25-2.1.el4_7.4.i386" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-0:10.25-2.1.el4_7.4.ia64" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-0:10.25-2.1.el4_7.4.ppc" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.ppc64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-0:10.25-2.1.el4_7.4.ppc64" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.ppc64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-0:10.25-2.1.el4_7.4.s390" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-0:10.25-2.1.el4_7.4.s390x" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.src as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-0:10.25-2.1.el4_7.4.src" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.src", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.25-2.1.el4_7.4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-0:10.25-2.1.el4_7.4.x86_64" }, "product_reference": "netpbm-0:10.25-2.1.el4_7.4.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64" }, "product_reference": "netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.i386" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.ia64" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.ppc" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.s390" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.s390x" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.25-2.1.el4_7.4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64" }, "product_reference": "netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.i386" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.ia64" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.ppc" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.s390" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.s390x" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.25-2.1.el4_7.4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64" }, "product_reference": "netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.i386" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.ia64" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.ppc" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.ppc64" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.s390" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.s390x" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.src as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.src" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.src", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.x86_64" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.i386" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.ia64" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.ppc" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.ppc64" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.s390" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.s390x" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.x86_64" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.35-6.1.el5_3.1.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.i386" }, "product_reference": "netpbm-progs-0:10.35-6.1.el5_3.1.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.35-6.1.el5_3.1.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.ia64" }, "product_reference": "netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.35-6.1.el5_3.1.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.ppc" }, "product_reference": "netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.35-6.1.el5_3.1.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.s390x" }, "product_reference": "netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.35-6.1.el5_3.1.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.x86_64" }, "product_reference": "netpbm-progs-0:10.35-6.1.el5_3.1.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-0:10.35-6.1.el5_3.1.i386" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-0:10.35-6.1.el5_3.1.ia64" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-0:10.35-6.1.el5_3.1.ppc" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-0:10.35-6.1.el5_3.1.ppc64" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-0:10.35-6.1.el5_3.1.s390" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-0:10.35-6.1.el5_3.1.s390x" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-0:10.35-6.1.el5_3.1.src" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.src", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-0:10.35-6.1.el5_3.1.x86_64" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.i386" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.ia64" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.ppc" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.ppc64" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.s390" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.s390x" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.x86_64" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.35-6.1.el5_3.1.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.i386" }, "product_reference": "netpbm-progs-0:10.35-6.1.el5_3.1.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.35-6.1.el5_3.1.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.ia64" }, "product_reference": "netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.35-6.1.el5_3.1.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.ppc" }, "product_reference": "netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.35-6.1.el5_3.1.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.s390x" }, "product_reference": "netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.35-6.1.el5_3.1.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.x86_64" }, "product_reference": "netpbm-progs-0:10.35-6.1.el5_3.1.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-0:10.35-6.1.el5_3.1.i386" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-0:10.35-6.1.el5_3.1.ia64" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-0:10.35-6.1.el5_3.1.ppc" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-0:10.35-6.1.el5_3.1.ppc64" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-0:10.35-6.1.el5_3.1.s390" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-0:10.35-6.1.el5_3.1.s390x" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.src as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-0:10.35-6.1.el5_3.1.src" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.src", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-0:10.35-6.1.el5_3.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-0:10.35-6.1.el5_3.1.x86_64" }, "product_reference": "netpbm-0:10.35-6.1.el5_3.1.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64" }, "product_reference": "netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.i386" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.ia64" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.ppc" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.ppc64" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.s390" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.s390x" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-devel-0:10.35-6.1.el5_3.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.x86_64" }, "product_reference": "netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.35-6.1.el5_3.1.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.i386" }, "product_reference": "netpbm-progs-0:10.35-6.1.el5_3.1.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.35-6.1.el5_3.1.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.ia64" }, "product_reference": "netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.35-6.1.el5_3.1.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.ppc" }, "product_reference": "netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.35-6.1.el5_3.1.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.s390x" }, "product_reference": "netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "netpbm-progs-0:10.35-6.1.el5_3.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.x86_64" }, "product_reference": "netpbm-progs-0:10.35-6.1.el5_3.1.x86_64", "relates_to_product_reference": "5Server" } ] }, "vulnerabilities": [ { "cve": "CVE-2007-2721", "discovery_date": "2007-10-23T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "346501" } ], "notes": [ { "category": "description", "text": "The jpc_qcx_getcompparms function in jpc/jpc_cs.c for the JasPer JPEG-2000 library (libjasper) before 1.900 allows remote user-assisted attackers to cause a denial of service (crash) and possibly corrupt the heap via malformed image files, as originally demonstrated using imagemagick convert.", "title": "Vulnerability description" }, { "category": "summary", "text": "jasper: crash in jpc_qcx_getcompparms", "title": "Vulnerability summary" }, { "category": "other", "text": "Not vulnerable. This issue did not affect versions of ghostscript as shipped with Red Hat Enterprise Linux 2.1, 3, 4 or 5 as they do not include a bundled JasPer library.", "title": "Statement" } ], "product_status": { "fixed": [ "4AS:netpbm-0:10.25-2.1.el4_7.4.i386", "4AS:netpbm-0:10.25-2.1.el4_7.4.ia64", "4AS:netpbm-0:10.25-2.1.el4_7.4.ppc", "4AS:netpbm-0:10.25-2.1.el4_7.4.ppc64", "4AS:netpbm-0:10.25-2.1.el4_7.4.s390", "4AS:netpbm-0:10.25-2.1.el4_7.4.s390x", "4AS:netpbm-0:10.25-2.1.el4_7.4.src", "4AS:netpbm-0:10.25-2.1.el4_7.4.x86_64", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.i386", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.s390", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.i386", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.s390", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.i386", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.ia64", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.ppc", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.ppc64", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.s390", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.s390x", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.src", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.x86_64", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.i386", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.s390", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.i386", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.s390", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "4ES:netpbm-0:10.25-2.1.el4_7.4.i386", "4ES:netpbm-0:10.25-2.1.el4_7.4.ia64", "4ES:netpbm-0:10.25-2.1.el4_7.4.ppc", "4ES:netpbm-0:10.25-2.1.el4_7.4.ppc64", "4ES:netpbm-0:10.25-2.1.el4_7.4.s390", "4ES:netpbm-0:10.25-2.1.el4_7.4.s390x", "4ES:netpbm-0:10.25-2.1.el4_7.4.src", "4ES:netpbm-0:10.25-2.1.el4_7.4.x86_64", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.i386", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.s390", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.i386", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.s390", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "4WS:netpbm-0:10.25-2.1.el4_7.4.i386", "4WS:netpbm-0:10.25-2.1.el4_7.4.ia64", "4WS:netpbm-0:10.25-2.1.el4_7.4.ppc", "4WS:netpbm-0:10.25-2.1.el4_7.4.ppc64", "4WS:netpbm-0:10.25-2.1.el4_7.4.s390", "4WS:netpbm-0:10.25-2.1.el4_7.4.s390x", "4WS:netpbm-0:10.25-2.1.el4_7.4.src", "4WS:netpbm-0:10.25-2.1.el4_7.4.x86_64", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.i386", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.s390", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.i386", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.s390", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.i386", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.ia64", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.ppc", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.ppc64", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.s390", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.s390x", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.src", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.x86_64", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.i386", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.s390", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.i386", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.x86_64", "5Client:netpbm-0:10.35-6.1.el5_3.1.i386", "5Client:netpbm-0:10.35-6.1.el5_3.1.ia64", "5Client:netpbm-0:10.35-6.1.el5_3.1.ppc", "5Client:netpbm-0:10.35-6.1.el5_3.1.ppc64", "5Client:netpbm-0:10.35-6.1.el5_3.1.s390", "5Client:netpbm-0:10.35-6.1.el5_3.1.s390x", "5Client:netpbm-0:10.35-6.1.el5_3.1.src", "5Client:netpbm-0:10.35-6.1.el5_3.1.x86_64", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.i386", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.s390", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.i386", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.x86_64", "5Server:netpbm-0:10.35-6.1.el5_3.1.i386", "5Server:netpbm-0:10.35-6.1.el5_3.1.ia64", "5Server:netpbm-0:10.35-6.1.el5_3.1.ppc", "5Server:netpbm-0:10.35-6.1.el5_3.1.ppc64", "5Server:netpbm-0:10.35-6.1.el5_3.1.s390", "5Server:netpbm-0:10.35-6.1.el5_3.1.s390x", "5Server:netpbm-0:10.35-6.1.el5_3.1.src", "5Server:netpbm-0:10.35-6.1.el5_3.1.x86_64", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.i386", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.s390", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.i386", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-2721" }, { "category": "external", "summary": "RHBZ#346501", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=346501" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-2721", "url": "https://www.cve.org/CVERecord?id=CVE-2007-2721" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-2721", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-2721" } ], "release_date": "2007-03-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-02-11T16:51:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", "product_ids": [ "4AS:netpbm-0:10.25-2.1.el4_7.4.i386", "4AS:netpbm-0:10.25-2.1.el4_7.4.ia64", "4AS:netpbm-0:10.25-2.1.el4_7.4.ppc", "4AS:netpbm-0:10.25-2.1.el4_7.4.ppc64", "4AS:netpbm-0:10.25-2.1.el4_7.4.s390", "4AS:netpbm-0:10.25-2.1.el4_7.4.s390x", "4AS:netpbm-0:10.25-2.1.el4_7.4.src", "4AS:netpbm-0:10.25-2.1.el4_7.4.x86_64", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.i386", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.s390", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.i386", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.s390", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.i386", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.ia64", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.ppc", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.ppc64", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.s390", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.s390x", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.src", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.x86_64", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.i386", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.s390", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.i386", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.s390", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "4ES:netpbm-0:10.25-2.1.el4_7.4.i386", "4ES:netpbm-0:10.25-2.1.el4_7.4.ia64", "4ES:netpbm-0:10.25-2.1.el4_7.4.ppc", "4ES:netpbm-0:10.25-2.1.el4_7.4.ppc64", "4ES:netpbm-0:10.25-2.1.el4_7.4.s390", "4ES:netpbm-0:10.25-2.1.el4_7.4.s390x", "4ES:netpbm-0:10.25-2.1.el4_7.4.src", "4ES:netpbm-0:10.25-2.1.el4_7.4.x86_64", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.i386", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.s390", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.i386", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.s390", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "4WS:netpbm-0:10.25-2.1.el4_7.4.i386", "4WS:netpbm-0:10.25-2.1.el4_7.4.ia64", "4WS:netpbm-0:10.25-2.1.el4_7.4.ppc", "4WS:netpbm-0:10.25-2.1.el4_7.4.ppc64", "4WS:netpbm-0:10.25-2.1.el4_7.4.s390", "4WS:netpbm-0:10.25-2.1.el4_7.4.s390x", "4WS:netpbm-0:10.25-2.1.el4_7.4.src", "4WS:netpbm-0:10.25-2.1.el4_7.4.x86_64", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.i386", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.s390", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.i386", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.s390", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.i386", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.ia64", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.ppc", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.ppc64", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.s390", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.s390x", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.src", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.x86_64", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.i386", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.s390", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.i386", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.x86_64", "5Client:netpbm-0:10.35-6.1.el5_3.1.i386", "5Client:netpbm-0:10.35-6.1.el5_3.1.ia64", "5Client:netpbm-0:10.35-6.1.el5_3.1.ppc", "5Client:netpbm-0:10.35-6.1.el5_3.1.ppc64", "5Client:netpbm-0:10.35-6.1.el5_3.1.s390", "5Client:netpbm-0:10.35-6.1.el5_3.1.s390x", "5Client:netpbm-0:10.35-6.1.el5_3.1.src", "5Client:netpbm-0:10.35-6.1.el5_3.1.x86_64", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.i386", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.s390", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.i386", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.x86_64", "5Server:netpbm-0:10.35-6.1.el5_3.1.i386", "5Server:netpbm-0:10.35-6.1.el5_3.1.ia64", "5Server:netpbm-0:10.35-6.1.el5_3.1.ppc", "5Server:netpbm-0:10.35-6.1.el5_3.1.ppc64", "5Server:netpbm-0:10.35-6.1.el5_3.1.s390", "5Server:netpbm-0:10.35-6.1.el5_3.1.s390x", "5Server:netpbm-0:10.35-6.1.el5_3.1.src", "5Server:netpbm-0:10.35-6.1.el5_3.1.x86_64", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.i386", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.s390", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.i386", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:0012" } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "jasper: crash in jpc_qcx_getcompparms" }, { "cve": "CVE-2008-3520", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2008-05-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "461476" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.", "title": "Vulnerability description" }, { "category": "summary", "text": "jasper: multiple integer overflows in jas_alloc calls", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:netpbm-0:10.25-2.1.el4_7.4.i386", "4AS:netpbm-0:10.25-2.1.el4_7.4.ia64", "4AS:netpbm-0:10.25-2.1.el4_7.4.ppc", "4AS:netpbm-0:10.25-2.1.el4_7.4.ppc64", "4AS:netpbm-0:10.25-2.1.el4_7.4.s390", "4AS:netpbm-0:10.25-2.1.el4_7.4.s390x", "4AS:netpbm-0:10.25-2.1.el4_7.4.src", "4AS:netpbm-0:10.25-2.1.el4_7.4.x86_64", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.i386", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.s390", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.i386", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.s390", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.i386", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.ia64", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.ppc", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.ppc64", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.s390", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.s390x", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.src", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.x86_64", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.i386", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.s390", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.i386", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.s390", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "4ES:netpbm-0:10.25-2.1.el4_7.4.i386", "4ES:netpbm-0:10.25-2.1.el4_7.4.ia64", "4ES:netpbm-0:10.25-2.1.el4_7.4.ppc", "4ES:netpbm-0:10.25-2.1.el4_7.4.ppc64", "4ES:netpbm-0:10.25-2.1.el4_7.4.s390", "4ES:netpbm-0:10.25-2.1.el4_7.4.s390x", "4ES:netpbm-0:10.25-2.1.el4_7.4.src", "4ES:netpbm-0:10.25-2.1.el4_7.4.x86_64", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.i386", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.s390", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.i386", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.s390", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "4WS:netpbm-0:10.25-2.1.el4_7.4.i386", "4WS:netpbm-0:10.25-2.1.el4_7.4.ia64", "4WS:netpbm-0:10.25-2.1.el4_7.4.ppc", "4WS:netpbm-0:10.25-2.1.el4_7.4.ppc64", "4WS:netpbm-0:10.25-2.1.el4_7.4.s390", "4WS:netpbm-0:10.25-2.1.el4_7.4.s390x", "4WS:netpbm-0:10.25-2.1.el4_7.4.src", "4WS:netpbm-0:10.25-2.1.el4_7.4.x86_64", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.i386", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.s390", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.i386", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.s390", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.i386", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.ia64", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.ppc", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.ppc64", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.s390", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.s390x", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.src", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.x86_64", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.i386", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.s390", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.i386", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.x86_64", "5Client:netpbm-0:10.35-6.1.el5_3.1.i386", "5Client:netpbm-0:10.35-6.1.el5_3.1.ia64", "5Client:netpbm-0:10.35-6.1.el5_3.1.ppc", "5Client:netpbm-0:10.35-6.1.el5_3.1.ppc64", "5Client:netpbm-0:10.35-6.1.el5_3.1.s390", "5Client:netpbm-0:10.35-6.1.el5_3.1.s390x", "5Client:netpbm-0:10.35-6.1.el5_3.1.src", "5Client:netpbm-0:10.35-6.1.el5_3.1.x86_64", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.i386", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.s390", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.i386", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.x86_64", "5Server:netpbm-0:10.35-6.1.el5_3.1.i386", "5Server:netpbm-0:10.35-6.1.el5_3.1.ia64", "5Server:netpbm-0:10.35-6.1.el5_3.1.ppc", "5Server:netpbm-0:10.35-6.1.el5_3.1.ppc64", "5Server:netpbm-0:10.35-6.1.el5_3.1.s390", "5Server:netpbm-0:10.35-6.1.el5_3.1.s390x", "5Server:netpbm-0:10.35-6.1.el5_3.1.src", "5Server:netpbm-0:10.35-6.1.el5_3.1.x86_64", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.i386", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.s390", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.i386", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2008-3520" }, { "category": "external", "summary": "RHBZ#461476", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=461476" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2008-3520", "url": "https://www.cve.org/CVERecord?id=CVE-2008-3520" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-3520", "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3520" } ], "release_date": "2008-09-08T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-02-11T16:51:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", "product_ids": [ "4AS:netpbm-0:10.25-2.1.el4_7.4.i386", "4AS:netpbm-0:10.25-2.1.el4_7.4.ia64", "4AS:netpbm-0:10.25-2.1.el4_7.4.ppc", "4AS:netpbm-0:10.25-2.1.el4_7.4.ppc64", "4AS:netpbm-0:10.25-2.1.el4_7.4.s390", "4AS:netpbm-0:10.25-2.1.el4_7.4.s390x", "4AS:netpbm-0:10.25-2.1.el4_7.4.src", "4AS:netpbm-0:10.25-2.1.el4_7.4.x86_64", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.i386", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.s390", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.i386", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.s390", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.i386", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.ia64", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.ppc", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.ppc64", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.s390", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.s390x", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.src", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.x86_64", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.i386", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.s390", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.i386", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.s390", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "4ES:netpbm-0:10.25-2.1.el4_7.4.i386", "4ES:netpbm-0:10.25-2.1.el4_7.4.ia64", "4ES:netpbm-0:10.25-2.1.el4_7.4.ppc", "4ES:netpbm-0:10.25-2.1.el4_7.4.ppc64", "4ES:netpbm-0:10.25-2.1.el4_7.4.s390", "4ES:netpbm-0:10.25-2.1.el4_7.4.s390x", "4ES:netpbm-0:10.25-2.1.el4_7.4.src", "4ES:netpbm-0:10.25-2.1.el4_7.4.x86_64", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.i386", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.s390", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.i386", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.s390", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "4WS:netpbm-0:10.25-2.1.el4_7.4.i386", "4WS:netpbm-0:10.25-2.1.el4_7.4.ia64", "4WS:netpbm-0:10.25-2.1.el4_7.4.ppc", "4WS:netpbm-0:10.25-2.1.el4_7.4.ppc64", "4WS:netpbm-0:10.25-2.1.el4_7.4.s390", "4WS:netpbm-0:10.25-2.1.el4_7.4.s390x", "4WS:netpbm-0:10.25-2.1.el4_7.4.src", "4WS:netpbm-0:10.25-2.1.el4_7.4.x86_64", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.i386", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.s390", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.i386", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.s390", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.i386", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.ia64", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.ppc", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.ppc64", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.s390", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.s390x", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.src", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.x86_64", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.i386", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.s390", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.i386", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.x86_64", "5Client:netpbm-0:10.35-6.1.el5_3.1.i386", "5Client:netpbm-0:10.35-6.1.el5_3.1.ia64", "5Client:netpbm-0:10.35-6.1.el5_3.1.ppc", "5Client:netpbm-0:10.35-6.1.el5_3.1.ppc64", "5Client:netpbm-0:10.35-6.1.el5_3.1.s390", "5Client:netpbm-0:10.35-6.1.el5_3.1.s390x", "5Client:netpbm-0:10.35-6.1.el5_3.1.src", "5Client:netpbm-0:10.35-6.1.el5_3.1.x86_64", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.i386", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.s390", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.i386", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.x86_64", "5Server:netpbm-0:10.35-6.1.el5_3.1.i386", "5Server:netpbm-0:10.35-6.1.el5_3.1.ia64", "5Server:netpbm-0:10.35-6.1.el5_3.1.ppc", "5Server:netpbm-0:10.35-6.1.el5_3.1.ppc64", "5Server:netpbm-0:10.35-6.1.el5_3.1.s390", "5Server:netpbm-0:10.35-6.1.el5_3.1.s390x", "5Server:netpbm-0:10.35-6.1.el5_3.1.src", "5Server:netpbm-0:10.35-6.1.el5_3.1.x86_64", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.i386", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.s390", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.i386", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:0012" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:netpbm-0:10.25-2.1.el4_7.4.i386", "4AS:netpbm-0:10.25-2.1.el4_7.4.ia64", "4AS:netpbm-0:10.25-2.1.el4_7.4.ppc", "4AS:netpbm-0:10.25-2.1.el4_7.4.ppc64", "4AS:netpbm-0:10.25-2.1.el4_7.4.s390", "4AS:netpbm-0:10.25-2.1.el4_7.4.s390x", "4AS:netpbm-0:10.25-2.1.el4_7.4.src", "4AS:netpbm-0:10.25-2.1.el4_7.4.x86_64", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "4AS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.i386", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.s390", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "4AS:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.i386", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.s390", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "4AS:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.i386", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.ia64", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.ppc", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.ppc64", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.s390", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.s390x", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.src", "4Desktop:netpbm-0:10.25-2.1.el4_7.4.x86_64", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "4Desktop:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.i386", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.s390", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "4Desktop:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.i386", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.s390", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "4Desktop:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "4ES:netpbm-0:10.25-2.1.el4_7.4.i386", "4ES:netpbm-0:10.25-2.1.el4_7.4.ia64", "4ES:netpbm-0:10.25-2.1.el4_7.4.ppc", "4ES:netpbm-0:10.25-2.1.el4_7.4.ppc64", "4ES:netpbm-0:10.25-2.1.el4_7.4.s390", "4ES:netpbm-0:10.25-2.1.el4_7.4.s390x", "4ES:netpbm-0:10.25-2.1.el4_7.4.src", "4ES:netpbm-0:10.25-2.1.el4_7.4.x86_64", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "4ES:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.i386", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.s390", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "4ES:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.i386", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.s390", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "4ES:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "4WS:netpbm-0:10.25-2.1.el4_7.4.i386", "4WS:netpbm-0:10.25-2.1.el4_7.4.ia64", "4WS:netpbm-0:10.25-2.1.el4_7.4.ppc", "4WS:netpbm-0:10.25-2.1.el4_7.4.ppc64", "4WS:netpbm-0:10.25-2.1.el4_7.4.s390", "4WS:netpbm-0:10.25-2.1.el4_7.4.s390x", "4WS:netpbm-0:10.25-2.1.el4_7.4.src", "4WS:netpbm-0:10.25-2.1.el4_7.4.x86_64", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.i386", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ia64", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.ppc64", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.s390x", "4WS:netpbm-debuginfo-0:10.25-2.1.el4_7.4.x86_64", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.i386", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.ia64", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.ppc", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.s390", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.s390x", "4WS:netpbm-devel-0:10.25-2.1.el4_7.4.x86_64", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.i386", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.ia64", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.ppc", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.s390", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.s390x", "4WS:netpbm-progs-0:10.25-2.1.el4_7.4.x86_64", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.i386", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.ia64", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.ppc", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.ppc64", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.s390", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.s390x", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.src", "5Client-Workstation:netpbm-0:10.35-6.1.el5_3.1.x86_64", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "5Client-Workstation:netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.i386", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.s390", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "5Client-Workstation:netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.i386", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "5Client-Workstation:netpbm-progs-0:10.35-6.1.el5_3.1.x86_64", "5Client:netpbm-0:10.35-6.1.el5_3.1.i386", "5Client:netpbm-0:10.35-6.1.el5_3.1.ia64", "5Client:netpbm-0:10.35-6.1.el5_3.1.ppc", "5Client:netpbm-0:10.35-6.1.el5_3.1.ppc64", "5Client:netpbm-0:10.35-6.1.el5_3.1.s390", "5Client:netpbm-0:10.35-6.1.el5_3.1.s390x", "5Client:netpbm-0:10.35-6.1.el5_3.1.src", "5Client:netpbm-0:10.35-6.1.el5_3.1.x86_64", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "5Client:netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.i386", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.s390", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "5Client:netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.i386", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "5Client:netpbm-progs-0:10.35-6.1.el5_3.1.x86_64", "5Server:netpbm-0:10.35-6.1.el5_3.1.i386", "5Server:netpbm-0:10.35-6.1.el5_3.1.ia64", "5Server:netpbm-0:10.35-6.1.el5_3.1.ppc", "5Server:netpbm-0:10.35-6.1.el5_3.1.ppc64", "5Server:netpbm-0:10.35-6.1.el5_3.1.s390", "5Server:netpbm-0:10.35-6.1.el5_3.1.s390x", "5Server:netpbm-0:10.35-6.1.el5_3.1.src", "5Server:netpbm-0:10.35-6.1.el5_3.1.x86_64", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.i386", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ia64", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.ppc64", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.s390x", "5Server:netpbm-debuginfo-0:10.35-6.1.el5_3.1.x86_64", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.i386", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.ia64", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.ppc", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.ppc64", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.s390", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.s390x", "5Server:netpbm-devel-0:10.35-6.1.el5_3.1.x86_64", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.i386", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.ia64", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.ppc", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.s390x", "5Server:netpbm-progs-0:10.35-6.1.el5_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "jasper: multiple integer overflows in jas_alloc calls" } ] }
rhsa-2015_0698
Vulnerability from csaf_redhat
Published
2015-03-18 12:11
Modified
2024-11-14 16:29
Summary
Red Hat Security Advisory: rhevm-spice-client security, bug fix, and enhancement update
Notes
Topic
Updated rhevm-spice-client packages that fix multiple security issues,
several bugs, and add one enhancement are now available for Red Hat
Enterprise Virtualization Manager 3.
Red Hat Product Security has rated this update as having Important security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.
Details
Red Hat Enterprise Virtualization Manager provides access to virtual
machines using SPICE. These SPICE client packages provide the SPICE client
and usbclerk service for both Windows 32-bit operating systems and Windows
64-bit operating systems.
This update adds support for the TLS Fallback Signaling Cipher Suite Value
(TLS_FALLBACK_SCSV), which can be used to prevent protocol downgrade
attacks against applications which re-connect using a lower SSL/TLS
protocol version when the initial connection indicating the highest
supported protocol version fails.
This can prevent a forceful downgrade of the communication to SSL 3.0.
The SSL 3.0 protocol was found to be vulnerable to the padding oracle
attack when using block cipher suites in cipher block chaining (CBC) mode.
This issue is identified as CVE-2014-3566, and also known under the alias
POODLE. This SSL 3.0 protocol flaw will not be addressed in a future
update; it is recommended that users configure their applications to
require at least TLS protocol version 1.0 for secure communication.
For additional information about this flaw, see the Knowledgebase article
at https://access.redhat.com/articles/1232123
Multiple flaws were found in the way JasPer decoded JPEG 2000 image files.
A specially crafted file could cause an application using JasPer to crash
or, possibly, execute arbitrary code. (CVE-2014-8138, CVE-2014-8157,
CVE-2014-8158, CVE-2014-9029, CVE-2014-8137, CVE-2011-4516, CVE-2011-4517,
CVE-2008-3520, CVE-2008-3522)
Red Hat would like to thank oCERT for reporting CVE-2014-8137,
CVE-2014-8138, CVE-2014-8157, CVE-2014-8158, CVE-2014-9029, CVE-2011-4516,
and CVE-2011-4517. oCERT acknowledges Jose Duart of the Google Security
Team as the original reporter of CVE-2014-8137 and CVE-2014-8138; and
pyddeh as the original reporter of CVE-2014-8157 and CVE-2014-8158.
The mingw-openssl and mingw-jasper packages have been upgraded to the
latest upstream version, which provides a number of bug fixes and
enhancements over the previous version. (BZ#1187585)
This update also fixes the following bugs:
* Previously, a guest system installed with tools incorrectly always
started in full screen mode, even when the "Open in Full Screen" option was
unchecked in console options. Now, when connecting in window mode with the
option unchecked, the guest system starts in a window as expected.
(BZ#1172126)
* Prior to this update, copying and pasting of images from the client to
the guest did not work when spice-gtk was built from upstream. Now, images
can be copied and pasted without problems. (BZ#1187270)
In addition, this update adds the following enhancement:
* Administrators now have the option of automatic multiuser installation of
virt-viewer onto many client workstations. (BZ#1187272)
All rhevm-spice-client users are advised to upgrade to these updated
packages, which correct these issues and add these enhancement.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated rhevm-spice-client packages that fix multiple security issues,\nseveral bugs, and add one enhancement are now available for Red Hat\nEnterprise Virtualization Manager 3.\n\nRed Hat Product Security has rated this update as having Important security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "Red Hat Enterprise Virtualization Manager provides access to virtual\nmachines using SPICE. These SPICE client packages provide the SPICE client\nand usbclerk service for both Windows 32-bit operating systems and Windows\n64-bit operating systems.\n\nThis update adds support for the TLS Fallback Signaling Cipher Suite Value\n(TLS_FALLBACK_SCSV), which can be used to prevent protocol downgrade\nattacks against applications which re-connect using a lower SSL/TLS\nprotocol version when the initial connection indicating the highest\nsupported protocol version fails.\n\nThis can prevent a forceful downgrade of the communication to SSL 3.0.\nThe SSL 3.0 protocol was found to be vulnerable to the padding oracle\nattack when using block cipher suites in cipher block chaining (CBC) mode.\nThis issue is identified as CVE-2014-3566, and also known under the alias\nPOODLE. This SSL 3.0 protocol flaw will not be addressed in a future\nupdate; it is recommended that users configure their applications to\nrequire at least TLS protocol version 1.0 for secure communication.\n\nFor additional information about this flaw, see the Knowledgebase article\nat https://access.redhat.com/articles/1232123\n\nMultiple flaws were found in the way JasPer decoded JPEG 2000 image files.\nA specially crafted file could cause an application using JasPer to crash\nor, possibly, execute arbitrary code. (CVE-2014-8138, CVE-2014-8157,\nCVE-2014-8158, CVE-2014-9029, CVE-2014-8137, CVE-2011-4516, CVE-2011-4517,\nCVE-2008-3520, CVE-2008-3522)\n\nRed Hat would like to thank oCERT for reporting CVE-2014-8137,\nCVE-2014-8138, CVE-2014-8157, CVE-2014-8158, CVE-2014-9029, CVE-2011-4516,\nand CVE-2011-4517. oCERT acknowledges Jose Duart of the Google Security\nTeam as the original reporter of CVE-2014-8137 and CVE-2014-8138; and\npyddeh as the original reporter of CVE-2014-8157 and CVE-2014-8158.\n\nThe mingw-openssl and mingw-jasper packages have been upgraded to the\nlatest upstream version, which provides a number of bug fixes and\nenhancements over the previous version. (BZ#1187585)\n\nThis update also fixes the following bugs:\n\n* Previously, a guest system installed with tools incorrectly always\nstarted in full screen mode, even when the \"Open in Full Screen\" option was\nunchecked in console options. Now, when connecting in window mode with the\noption unchecked, the guest system starts in a window as expected.\n(BZ#1172126)\n\n* Prior to this update, copying and pasting of images from the client to\nthe guest did not work when spice-gtk was built from upstream. Now, images\ncan be copied and pasted without problems. (BZ#1187270)\n\nIn addition, this update adds the following enhancement:\n\n* Administrators now have the option of automatic multiuser installation of\nvirt-viewer onto many client workstations. (BZ#1187272)\n\nAll rhevm-spice-client users are advised to upgrade to these updated\npackages, which correct these issues and add these enhancement.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2015:0698", "url": "https://access.redhat.com/errata/RHSA-2015:0698" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "461476", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=461476" }, { "category": "external", "summary": "461478", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=461478" }, { "category": "external", "summary": "747726", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747726" }, { "category": "external", "summary": "1167537", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1167537" }, { "category": "external", "summary": "1172126", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1172126" }, { "category": "external", "summary": "1173157", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1173157" }, { "category": "external", "summary": "1173162", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1173162" }, { "category": "external", "summary": "1179282", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1179282" }, { "category": "external", "summary": "1179298", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1179298" }, { "category": "external", "summary": "1187270", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1187270" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0698.json" } ], "title": "Red Hat Security Advisory: rhevm-spice-client security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-14T16:29:52+00:00", "generator": { "date": "2024-11-14T16:29:52+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.0" } }, "id": "RHSA-2015:0698", "initial_release_date": "2015-03-18T12:11:46+00:00", "revision_history": [ { "date": "2015-03-18T12:11:46+00:00", "number": "1", "summary": "Initial version" }, { "date": "2015-03-18T12:11:47+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-14T16:29:52+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "RHEV-M 3.5", "product": { "name": "RHEV-M 3.5", "product_id": "6Server-RHEV-S-3.5", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhev_manager:3" } } } ], "category": "product_family", "name": "Red Hat Virtualization" }, { "branches": [ { "category": "product_version", "name": "rhevm-spice-client-0:3.5-3.el6.src", "product": { "name": "rhevm-spice-client-0:3.5-3.el6.src", "product_id": "rhevm-spice-client-0:3.5-3.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhevm-spice-client@3.5-3.el6?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "product": { "name": "rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "product_id": "rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhevm-spice-client-x86-cab@3.5-3.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "product": { "name": "rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "product_id": "rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhevm-spice-client-x64-msi@3.5-3.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch", "product": { "name": "rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch", "product_id": "rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhevm-spice-client-x86-msi@3.5-3.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "product": { "name": "rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "product_id": "rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhevm-spice-client-x64-cab@3.5-3.el6?arch=noarch" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "rhevm-spice-client-0:3.5-3.el6.src as a component of RHEV-M 3.5", "product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src" }, "product_reference": "rhevm-spice-client-0:3.5-3.el6.src", "relates_to_product_reference": "6Server-RHEV-S-3.5" }, { "category": "default_component_of", "full_product_name": { "name": "rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch as a component of RHEV-M 3.5", "product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch" }, "product_reference": "rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "relates_to_product_reference": "6Server-RHEV-S-3.5" }, { "category": "default_component_of", "full_product_name": { "name": "rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch as a component of RHEV-M 3.5", "product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch" }, "product_reference": "rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "relates_to_product_reference": "6Server-RHEV-S-3.5" }, { "category": "default_component_of", "full_product_name": { "name": "rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch as a component of RHEV-M 3.5", "product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch" }, "product_reference": "rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "relates_to_product_reference": "6Server-RHEV-S-3.5" }, { "category": "default_component_of", "full_product_name": { "name": "rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch as a component of RHEV-M 3.5", "product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" }, "product_reference": "rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch", "relates_to_product_reference": "6Server-RHEV-S-3.5" } ] }, "vulnerabilities": [ { "cve": "CVE-2008-3520", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2008-05-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "461476" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.", "title": "Vulnerability description" }, { "category": "summary", "text": "jasper: multiple integer overflows in jas_alloc calls", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2008-3520" }, { "category": "external", "summary": "RHBZ#461476", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=461476" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2008-3520", "url": "https://www.cve.org/CVERecord?id=CVE-2008-3520" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-3520", "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3520" } ], "release_date": "2008-09-08T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-03-18T12:11:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0698" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "jasper: multiple integer overflows in jas_alloc calls" }, { "cve": "CVE-2008-3522", "cwe": { "id": "CWE-122", "name": "Heap-based Buffer Overflow" }, "discovery_date": "2008-05-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "461478" } ], "notes": [ { "category": "description", "text": "Buffer overflow in the jas_stream_printf function in libjasper/base/jas_stream.c in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via vectors related to the mif_hdr_put function and use of vsprintf.", "title": "Vulnerability description" }, { "category": "summary", "text": "jasper: possible buffer overflow in jas_stream_printf()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2008-3522" }, { "category": "external", "summary": "RHBZ#461478", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=461478" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2008-3522", "url": "https://www.cve.org/CVERecord?id=CVE-2008-3522" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-3522", "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3522" } ], "release_date": "2008-09-08T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-03-18T12:11:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0698" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "jasper: possible buffer overflow in jas_stream_printf()" }, { "acknowledgments": [ { "names": [ "Jonathan Foote" ], "organization": "CERT Coordination Center" } ], "cve": "CVE-2011-4516", "cwe": { "id": "CWE-122", "name": "Heap-based Buffer Overflow" }, "discovery_date": "2011-10-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "747726" } ], "notes": [ { "category": "description", "text": "A heap-based buffer overflow flaw was found in the way JasPer decoded JPEG 2000 compressed image files. An attacker could create a malicious JPEG 2000 compressed image file that, when opened, would cause applications that use JasPer (such as Nautilus) to crash or, potentially, execute arbitrary code.", "title": "Vulnerability description" }, { "category": "summary", "text": "jasper: heap buffer overflow flaws lead to arbitrary code execution (CERT VU#887409)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-4516" }, { "category": "external", "summary": "RHBZ#747726", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747726" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-4516", "url": "https://www.cve.org/CVERecord?id=CVE-2011-4516" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4516", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4516" } ], "release_date": "2011-12-08T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-03-18T12:11:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0698" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "jasper: heap buffer overflow flaws lead to arbitrary code execution (CERT VU#887409)" }, { "acknowledgments": [ { "names": [ "Jonathan Foote" ], "organization": "CERT Coordination Center" } ], "cve": "CVE-2011-4517", "cwe": { "id": "CWE-122", "name": "Heap-based Buffer Overflow" }, "discovery_date": "2011-10-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "747726" } ], "notes": [ { "category": "description", "text": "A heap-based buffer overflow flaw was found in the way JasPer decoded JPEG 2000 compressed image files. An attacker could create a malicious JPEG 2000 compressed image file that, when opened, would cause applications that use JasPer (such as Nautilus) to crash or, potentially, execute arbitrary code.", "title": "Vulnerability description" }, { "category": "summary", "text": "jasper: heap buffer overflow flaws lead to arbitrary code execution (CERT VU#887409)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-4517" }, { "category": "external", "summary": "RHBZ#747726", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747726" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-4517", "url": "https://www.cve.org/CVERecord?id=CVE-2011-4517" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4517", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4517" } ], "release_date": "2011-12-08T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-03-18T12:11:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0698" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "jasper: heap buffer overflow flaws lead to arbitrary code execution (CERT VU#887409)" }, { "acknowledgments": [ { "names": [ "oCERT" ] } ], "cve": "CVE-2014-8137", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2014-12-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1173157" } ], "notes": [ { "category": "description", "text": "A double free flaw was found in the way JasPer parsed ICC color profiles in JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.", "title": "Vulnerability description" }, { "category": "summary", "text": "jasper: double-free in in jas_iccattrval_destroy() (oCERT-2014-012)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-8137" }, { "category": "external", "summary": "RHBZ#1173157", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1173157" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-8137", "url": "https://www.cve.org/CVERecord?id=CVE-2014-8137" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-8137", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8137" }, { "category": "external", "summary": "http://www.ocert.org/advisories/ocert-2014-012.html", "url": "http://www.ocert.org/advisories/ocert-2014-012.html" } ], "release_date": "2014-12-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-03-18T12:11:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0698" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "jasper: double-free in in jas_iccattrval_destroy() (oCERT-2014-012)" }, { "acknowledgments": [ { "names": [ "oCERT" ] } ], "cve": "CVE-2014-8138", "cwe": { "id": "CWE-122", "name": "Heap-based Buffer Overflow" }, "discovery_date": "2014-12-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1173162" } ], "notes": [ { "category": "description", "text": "A heap-based buffer overflow flaw was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.", "title": "Vulnerability description" }, { "category": "summary", "text": "jasper: heap overflow in jp2_decode() (oCERT-2014-012)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-8138" }, { "category": "external", "summary": "RHBZ#1173162", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1173162" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-8138", "url": "https://www.cve.org/CVERecord?id=CVE-2014-8138" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-8138", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8138" }, { "category": "external", "summary": "http://www.ocert.org/advisories/ocert-2014-012.html", "url": "http://www.ocert.org/advisories/ocert-2014-012.html" } ], "release_date": "2014-12-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-03-18T12:11:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0698" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "jasper: heap overflow in jp2_decode() (oCERT-2014-012)" }, { "acknowledgments": [ { "names": [ "oCERT" ] } ], "cve": "CVE-2014-8157", "cwe": { "id": "CWE-122", "name": "Heap-based Buffer Overflow" }, "discovery_date": "2015-01-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1179282" } ], "notes": [ { "category": "description", "text": "An off-by-one flaw, leading to a heap-based buffer overflow, was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.", "title": "Vulnerability description" }, { "category": "summary", "text": "jasper: dec-\u003enumtiles off-by-one check in jpc_dec_process_sot() (oCERT-2015-001)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-8157" }, { "category": "external", "summary": "RHBZ#1179282", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1179282" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-8157", "url": "https://www.cve.org/CVERecord?id=CVE-2014-8157" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-8157", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8157" }, { "category": "external", "summary": "http://www.ocert.org/advisories/ocert-2015-001.html", "url": "http://www.ocert.org/advisories/ocert-2015-001.html" } ], "release_date": "2015-01-21T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-03-18T12:11:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0698" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "jasper: dec-\u003enumtiles off-by-one check in jpc_dec_process_sot() (oCERT-2015-001)" }, { "acknowledgments": [ { "names": [ "oCERT" ] } ], "cve": "CVE-2014-8158", "cwe": { "id": "CWE-770", "name": "Allocation of Resources Without Limits or Throttling" }, "discovery_date": "2014-01-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1179298" } ], "notes": [ { "category": "description", "text": "An unrestricted stack memory use flaw was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.", "title": "Vulnerability description" }, { "category": "summary", "text": "jasper: unrestricted stack memory use in jpc_qmfb.c (oCERT-2015-001)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-8158" }, { "category": "external", "summary": "RHBZ#1179298", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1179298" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-8158", "url": "https://www.cve.org/CVERecord?id=CVE-2014-8158" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-8158", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8158" }, { "category": "external", "summary": "http://www.ocert.org/advisories/ocert-2015-001.html", "url": "http://www.ocert.org/advisories/ocert-2015-001.html" } ], "release_date": "2015-01-21T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-03-18T12:11:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0698" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "jasper: unrestricted stack memory use in jpc_qmfb.c (oCERT-2015-001)" }, { "acknowledgments": [ { "names": [ "oCERT" ] } ], "cve": "CVE-2014-9029", "cwe": { "id": "CWE-122", "name": "Heap-based Buffer Overflow" }, "discovery_date": "2014-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1167537" } ], "notes": [ { "category": "description", "text": "Multiple off-by-one flaws, leading to heap-based buffer overflows, were found in the way JasPer decoded JPEG 2000 files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.", "title": "Vulnerability description" }, { "category": "summary", "text": "jasper: incorrect component number check in COC, RGN and QCC marker segment decoders (oCERT-2014-009)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-9029" }, { "category": "external", "summary": "RHBZ#1167537", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1167537" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-9029", "url": "https://www.cve.org/CVERecord?id=CVE-2014-9029" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-9029", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9029" }, { "category": "external", "summary": "http://www.ocert.org/advisories/ocert-2014-009.html", "url": "http://www.ocert.org/advisories/ocert-2014-009.html" } ], "release_date": "2014-12-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-03-18T12:11:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0698" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch", "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "jasper: incorrect component number check in COC, RGN and QCC marker segment decoders (oCERT-2014-009)" } ] }
ghsa-83j4-67f2-p565
Vulnerability from github
Published
2022-05-02 00:00
Modified
2022-05-02 00:00
Details
Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.
{ "affected": [], "aliases": [ "CVE-2008-3520" ], "database_specific": { "cwe_ids": [], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2008-10-02T18:18:00Z", "severity": "HIGH" }, "details": "Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.", "id": "GHSA-83j4-67f2-p565", "modified": "2022-05-02T00:00:56Z", "published": "2022-05-02T00:00:56Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3520" }, { "type": "WEB", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45621" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10141" }, { "type": "WEB", "url": "http://bugs.gentoo.org/show_bug.cgi?id=222819" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2015-0698.html" }, { "type": "WEB", "url": "http://secunia.com/advisories/33173" }, { "type": "WEB", "url": "http://secunia.com/advisories/34391" }, { "type": "WEB", "url": "http://security.gentoo.org/glsa/glsa-200812-18.xml" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:142" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:144" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:164" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2009-0012.html" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/31470" }, { "type": "WEB", "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606" }, { "type": "WEB", "url": "http://www.ubuntu.com/usn/USN-742-1" } ], "schema_version": "1.4.0", "severity": [] }
Loading…
Loading…
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.