csaf_redhat - rhsa-2015

rhsa-2015_1713

Vulnerability from csaf_redhat

Published

2015-09-03 17:08

Modified

2024-11-14 18:11

Summary

Red Hat Security Advisory: rhev-hypervisor security, bug fix, and enhancement update

Notes

Topic

Updated rhev-hypervisor packages that fix multiple security issues, several bugs, and add various enhancements are now available. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

Details

The rhev-hypervisor package provides a Red Hat Enterprise Virtualization Hypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor is a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes everything necessary to run and manage virtual machines: A subset of the Red Hat Enterprise Linux operating environment and the Red Hat Enterprise Virtualization Agent. Note: Red Hat Enterprise Virtualization Hypervisor is only available for the Intel 64 and AMD64 architectures with virtualization extensions. A heap-based buffer overflow flaw was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code. (CVE-2014-8138) A race condition flaw, leading to a heap-based memory corruption, was found in spice's worker_update_monitors_config() function, which runs under the QEMU-KVM context on the host. A user in a guest could leverage this flaw to crash the host QEMU-KVM process or, possibly, execute arbitrary code with the privileges of the host QEMU-KVM process. (CVE-2015-3247) A double free flaw was found in the way JasPer parsed ICC color profiles in JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code. (CVE-2014-8137) It was found that the idle timeout in the Red Hat Enterprise Virtualization Manager Web Admin interface failed to log out a session if a VM has been selected in the VM grid view. This could allow a local attacker to access the web interface if it was left unattended. (CVE-2015-1841) Red Hat would like to thank oCERT for reporting CVE-2014-8137 and CVE-2014-8138. oCERT acknowledges Jose Duart of the Google Security Team as the original reporter. The CVE-2015-3247 issue was discovered by Frediano Ziglio of Red Hat. The CVE-2015-1841 issue was discovered by Einav Cohen of Red Hat. This update also fixes the following bug: * Previously, installing the Red Hat Enterprise Virtualization Hypervisor 7 RPM on a Red Hat Enterprise Linux 6 host failed, because no such thing was available. Now, the Red Hat Enterprise Virtualization Hypervisor 7 RPM is available in the rhel-6-server-rhevh-rpms channel, and can be installed on a Red Hat Enterprise Linux 6 host. (BZ#1193678) In addition, this update adds the following enhancement: * With this release, the Red Hat Enterprise Virtualizaton Hypervisor now includes the drivers for the Dell Shared PERC8 RAID Controller. (BZ#1186582) Users of the Red Hat Enterprise Virtualization Hypervisor are advised to upgrade to this updated package.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated rhev-hypervisor packages that fix multiple security issues, several\nbugs, and add various enhancements are now available.\n\nRed Hat Product Security has rated this update as having Important security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The rhev-hypervisor package provides a Red Hat Enterprise Virtualization \nHypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor \nis a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes \neverything necessary to run and manage virtual machines: A subset of the \nRed Hat Enterprise Linux operating environment and the Red Hat Enterprise \nVirtualization Agent.\n\nNote: Red Hat Enterprise Virtualization Hypervisor is only available for \nthe Intel 64 and AMD64 architectures with virtualization extensions.\n\nA heap-based buffer overflow flaw was found in the way JasPer decoded JPEG\n2000 image files. A specially crafted file could cause an application using\nJasPer to crash or, possibly, execute arbitrary code. (CVE-2014-8138)\n\nA race condition flaw, leading to a heap-based memory corruption, was found\nin spice\u0027s worker_update_monitors_config() function, which runs under the\nQEMU-KVM context on the host. A user in a guest could leverage this flaw to\ncrash the host QEMU-KVM process or, possibly, execute arbitrary code with\nthe privileges of the host QEMU-KVM process. (CVE-2015-3247)\n\nA double free flaw was found in the way JasPer parsed ICC color profiles in\nJPEG 2000 image files. A specially crafted file could cause an application\nusing JasPer to crash or, possibly, execute arbitrary code. (CVE-2014-8137)\n\nIt was found that the idle timeout in the Red Hat Enterprise Virtualization\nManager Web Admin interface failed to log out a session if a VM has been\nselected in the VM grid view. This could allow a local attacker to access\nthe web interface if it was left unattended. (CVE-2015-1841)\n\nRed Hat would like to thank oCERT for reporting CVE-2014-8137 and\nCVE-2014-8138. oCERT acknowledges Jose Duart of the Google Security Team as\nthe original reporter. The CVE-2015-3247 issue was discovered by Frediano\nZiglio of Red Hat. The CVE-2015-1841 issue was discovered by Einav Cohen\nof Red Hat.\n\nThis update also fixes the following bug:\n\n* Previously, installing the Red Hat Enterprise Virtualization Hypervisor 7\nRPM on a Red Hat Enterprise Linux 6 host failed, because no such thing was\navailable. Now, the Red Hat Enterprise Virtualization Hypervisor 7 RPM is\navailable in the rhel-6-server-rhevh-rpms channel, and can be installed on\na Red Hat Enterprise Linux 6 host. (BZ#1193678)\n\nIn addition, this update adds the following enhancement:\n\n* With this release, the Red Hat Enterprise Virtualizaton Hypervisor now\nincludes the drivers for the Dell Shared PERC8 RAID Controller.\n(BZ#1186582)\n\nUsers of the Red Hat Enterprise Virtualization Hypervisor are advised to\nupgrade to this updated package.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2015:1713",
        "url": "https://access.redhat.com/errata/RHSA-2015:1713"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "1173157",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1173157"
      },
      {
        "category": "external",
        "summary": "1173162",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1173162"
      },
      {
        "category": "external",
        "summary": "1174708",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1174708"
      },
      {
        "category": "external",
        "summary": "1206332",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1206332"
      },
      {
        "category": "external",
        "summary": "1225224",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1225224"
      },
      {
        "category": "external",
        "summary": "1231027",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1231027"
      },
      {
        "category": "external",
        "summary": "1233145",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1233145"
      },
      {
        "category": "external",
        "summary": "1233238",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1233238"
      },
      {
        "category": "external",
        "summary": "1248942",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1248942"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_1713.json"
      }
    ],
    "title": "Red Hat Security Advisory: rhev-hypervisor security, bug fix, and enhancement update",
    "tracking": {
      "current_release_date": "2024-11-14T18:11:23+00:00",
      "generator": {
        "date": "2024-11-14T18:11:23+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.0"
        }
      },
      "id": "RHSA-2015:1713",
      "initial_release_date": "2015-09-03T17:08:30+00:00",
      "revision_history": [
        {
          "date": "2015-09-03T17:08:30+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2015-09-03T17:08:30+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-14T18:11:23+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "RHEV Hypervisor for RHEL-6",
                "product": {
                  "name": "RHEV Hypervisor for RHEL-6",
                  "product_id": "6Server-RHEV-Hypervisor",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:6::hypervisor"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "RHEL 7-based RHEV-H",
                "product": {
                  "name": "RHEL 7-based RHEV-H",
                  "product_id": "7Server-RHEV-Hypervisor-7",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::hypervisor"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Virtualization"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "rhev-hypervisor7-0:7.1-20150827.1.el6ev.noarch",
                "product": {
                  "name": "rhev-hypervisor7-0:7.1-20150827.1.el6ev.noarch",
                  "product_id": "rhev-hypervisor7-0:7.1-20150827.1.el6ev.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rhev-hypervisor7@7.1-20150827.1.el6ev?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rhev-hypervisor6-0:6.7-20150828.0.el6ev.noarch",
                "product": {
                  "name": "rhev-hypervisor6-0:6.7-20150828.0.el6ev.noarch",
                  "product_id": "rhev-hypervisor6-0:6.7-20150828.0.el6ev.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rhev-hypervisor6@6.7-20150828.0.el6ev?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rhev-hypervisor7-0:7.1-20150827.1.el7ev.noarch",
                "product": {
                  "name": "rhev-hypervisor7-0:7.1-20150827.1.el7ev.noarch",
                  "product_id": "rhev-hypervisor7-0:7.1-20150827.1.el7ev.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rhev-hypervisor7@7.1-20150827.1.el7ev?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "rhev-hypervisor7-0:7.1-20150827.1.el6ev.src",
                "product": {
                  "name": "rhev-hypervisor7-0:7.1-20150827.1.el6ev.src",
                  "product_id": "rhev-hypervisor7-0:7.1-20150827.1.el6ev.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rhev-hypervisor7@7.1-20150827.1.el6ev?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rhev-hypervisor7-0:7.1-20150827.1.el7ev.src",
                "product": {
                  "name": "rhev-hypervisor7-0:7.1-20150827.1.el7ev.src",
                  "product_id": "rhev-hypervisor7-0:7.1-20150827.1.el7ev.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rhev-hypervisor7@7.1-20150827.1.el7ev?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rhev-hypervisor6-0:6.7-20150828.0.el6ev.noarch as a component of RHEV Hypervisor for RHEL-6",
          "product_id": "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.7-20150828.0.el6ev.noarch"
        },
        "product_reference": "rhev-hypervisor6-0:6.7-20150828.0.el6ev.noarch",
        "relates_to_product_reference": "6Server-RHEV-Hypervisor"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rhev-hypervisor7-0:7.1-20150827.1.el6ev.noarch as a component of RHEV Hypervisor for RHEL-6",
          "product_id": "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.noarch"
        },
        "product_reference": "rhev-hypervisor7-0:7.1-20150827.1.el6ev.noarch",
        "relates_to_product_reference": "6Server-RHEV-Hypervisor"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rhev-hypervisor7-0:7.1-20150827.1.el6ev.src as a component of RHEV Hypervisor for RHEL-6",
          "product_id": "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.src"
        },
        "product_reference": "rhev-hypervisor7-0:7.1-20150827.1.el6ev.src",
        "relates_to_product_reference": "6Server-RHEV-Hypervisor"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rhev-hypervisor7-0:7.1-20150827.1.el7ev.noarch as a component of RHEL 7-based RHEV-H",
          "product_id": "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.noarch"
        },
        "product_reference": "rhev-hypervisor7-0:7.1-20150827.1.el7ev.noarch",
        "relates_to_product_reference": "7Server-RHEV-Hypervisor-7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rhev-hypervisor7-0:7.1-20150827.1.el7ev.src as a component of RHEL 7-based RHEV-H",
          "product_id": "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.src"
        },
        "product_reference": "rhev-hypervisor7-0:7.1-20150827.1.el7ev.src",
        "relates_to_product_reference": "7Server-RHEV-Hypervisor-7"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "oCERT"
          ]
        }
      ],
      "cve": "CVE-2014-8137",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2014-12-10T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1173157"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A double free flaw was found in the way JasPer parsed ICC color profiles in JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jasper: double-free in in jas_iccattrval_destroy() (oCERT-2014-012)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.7-20150828.0.el6ev.noarch",
          "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.noarch",
          "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.src",
          "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.noarch",
          "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.src"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2014-8137"
        },
        {
          "category": "external",
          "summary": "RHBZ#1173157",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1173157"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2014-8137",
          "url": "https://www.cve.org/CVERecord?id=CVE-2014-8137"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-8137",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8137"
        },
        {
          "category": "external",
          "summary": "http://www.ocert.org/advisories/ocert-2014-012.html",
          "url": "http://www.ocert.org/advisories/ocert-2014-012.html"
        }
      ],
      "release_date": "2014-12-18T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-09-03T17:08:30+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.7-20150828.0.el6ev.noarch",
            "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.noarch",
            "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.src",
            "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.noarch",
            "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:1713"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.1,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.7-20150828.0.el6ev.noarch",
            "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.noarch",
            "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.src",
            "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.noarch",
            "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.src"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "jasper: double-free in in jas_iccattrval_destroy() (oCERT-2014-012)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "oCERT"
          ]
        }
      ],
      "cve": "CVE-2014-8138",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "discovery_date": "2014-12-10T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1173162"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A heap-based buffer overflow flaw was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jasper: heap overflow in jp2_decode() (oCERT-2014-012)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.7-20150828.0.el6ev.noarch",
          "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.noarch",
          "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.src",
          "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.noarch",
          "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.src"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2014-8138"
        },
        {
          "category": "external",
          "summary": "RHBZ#1173162",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1173162"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2014-8138",
          "url": "https://www.cve.org/CVERecord?id=CVE-2014-8138"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-8138",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8138"
        },
        {
          "category": "external",
          "summary": "http://www.ocert.org/advisories/ocert-2014-012.html",
          "url": "http://www.ocert.org/advisories/ocert-2014-012.html"
        }
      ],
      "release_date": "2014-12-18T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-09-03T17:08:30+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.7-20150828.0.el6ev.noarch",
            "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.noarch",
            "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.src",
            "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.noarch",
            "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:1713"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.7-20150828.0.el6ev.noarch",
            "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.noarch",
            "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.src",
            "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.noarch",
            "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.src"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "jasper: heap overflow in jp2_decode() (oCERT-2014-012)"
    },
    {
      "acknowledgments": [
        {
          "summary": "This issue was discovered by Red Hat."
        }
      ],
      "cve": "CVE-2015-1841",
      "discovery_date": "2015-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1206332"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "It was found that the idle timeout in the Red Hat Enterprise Virtualization Manager Web Admin interface failed to log out a session if a VM has been selected in the VM grid view. This could allow a local attacker to access the web interface if it was left unattended.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "RHEV-M: webadmin automatic logout fails if VM is selected",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.7-20150828.0.el6ev.noarch",
          "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.noarch",
          "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.src",
          "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.noarch",
          "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.src"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2015-1841"
        },
        {
          "category": "external",
          "summary": "RHBZ#1206332",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1206332"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2015-1841",
          "url": "https://www.cve.org/CVERecord?id=CVE-2015-1841"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-1841",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-1841"
        }
      ],
      "release_date": "2015-03-26T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-09-03T17:08:30+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.7-20150828.0.el6ev.noarch",
            "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.noarch",
            "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.src",
            "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.noarch",
            "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:1713"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 3.7,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:L/AC:H/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.7-20150828.0.el6ev.noarch",
            "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.noarch",
            "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.src",
            "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.noarch",
            "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.src"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "RHEV-M: webadmin automatic logout fails if VM is selected"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Frediano Ziglio"
          ],
          "organization": "Red Hat",
          "summary": "This issue was discovered by Red Hat."
        }
      ],
      "cve": "CVE-2015-3247",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "discovery_date": "2015-06-10T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1233238"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A race condition flaw, leading to a heap-based memory corruption, was found in spice\u0027s worker_update_monitors_config() function, which runs under the QEMU-KVM context on the host. A user in a guest could leverage this flaw to crash the host QEMU-KVM process or, possibly, execute arbitrary code with the privileges of the host QEMU-KVM process.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "spice: memory corruption in worker_update_monitors_config()",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.7-20150828.0.el6ev.noarch",
          "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.noarch",
          "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.src",
          "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.noarch",
          "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.src"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2015-3247"
        },
        {
          "category": "external",
          "summary": "RHBZ#1233238",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1233238"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2015-3247",
          "url": "https://www.cve.org/CVERecord?id=CVE-2015-3247"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-3247",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-3247"
        }
      ],
      "release_date": "2015-09-03T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-09-03T17:08:30+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.7-20150828.0.el6ev.noarch",
            "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.noarch",
            "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.src",
            "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.noarch",
            "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:1713"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "LOW",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "SINGLE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.7,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:A/AC:L/Au:S/C:C/I:C/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-Hypervisor:rhev-hypervisor6-0:6.7-20150828.0.el6ev.noarch",
            "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.noarch",
            "6Server-RHEV-Hypervisor:rhev-hypervisor7-0:7.1-20150827.1.el6ev.src",
            "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.noarch",
            "7Server-RHEV-Hypervisor-7:rhev-hypervisor7-0:7.1-20150827.1.el7ev.src"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "spice: memory corruption in worker_update_monitors_config()"
    }
  ]
}

cve-2014-8137

Vulnerability from cvelistv5

Published

2014-12-24 18:00

Modified

2024-08-06 13:10

Severity ?

Summary

Double free vulnerability in the jas_iccattrval_destroy function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted ICC color profile in a JPEG 2000 image file.

References

▼	URL	Tags
	http://www.mandriva.com/security/advisories?name=MDVSA-2015:012	vendor-advisory, x_refsource_MANDRIVA
	http://www.debian.org/security/2014/dsa-3106	vendor-advisory, x_refsource_DEBIAN
	http://secunia.com/advisories/62619	third-party-advisory, x_refsource_SECUNIA
	http://lists.opensuse.org/opensuse-updates/2015-01/msg00013.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-updates/2015-01/msg00017.html	vendor-advisory, x_refsource_SUSE
	http://secunia.com/advisories/61747	third-party-advisory, x_refsource_SECUNIA
	http://packetstormsecurity.com/files/129660/JasPer-1.900.1-Double-Free-Heap-Overflow.html	x_refsource_MISC
	http://www.ubuntu.com/usn/USN-2483-2	vendor-advisory, x_refsource_UBUNTU
	http://www.ubuntu.com/usn/USN-2483-1	vendor-advisory, x_refsource_UBUNTU
	https://www.ocert.org/advisories/ocert-2014-012.html	x_refsource_MISC
	http://secunia.com/advisories/62615	third-party-advisory, x_refsource_SECUNIA
	http://www.securitytracker.com/id/1033459	vdb-entry, x_refsource_SECTRACK
	http://rhn.redhat.com/errata/RHSA-2015-0698.html	vendor-advisory, x_refsource_REDHAT
	http://lists.opensuse.org/opensuse-updates/2015-01/msg00014.html	vendor-advisory, x_refsource_SUSE
	http://secunia.com/advisories/62311	third-party-advisory, x_refsource_SECUNIA
	http://rhn.redhat.com/errata/RHSA-2014-2021.html	vendor-advisory, x_refsource_REDHAT
	http://www.securityfocus.com/bid/71742	vdb-entry, x_refsource_BID
	http://advisories.mageia.org/MGASA-2014-0539.html	x_refsource_CONFIRM
	http://www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.538606	vendor-advisory, x_refsource_SLACKWARE
	http://www.mandriva.com/security/advisories?name=MDVSA-2015:159	vendor-advisory, x_refsource_MANDRIVA
	http://rhn.redhat.com/errata/RHSA-2015-1713.html	vendor-advisory, x_refsource_REDHAT

Impacted products

Vendor

Product

Version

▼

n/a

Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T13:10:50.959Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "MDVSA-2015:012",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:012"
          },
          {
            "name": "DSA-3106",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2014/dsa-3106"
          },
          {
            "name": "62619",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/62619"
          },
          {
            "name": "openSUSE-SU-2015:0038",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2015-01/msg00013.html"
          },
          {
            "name": "openSUSE-SU-2015:0042",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2015-01/msg00017.html"
          },
          {
            "name": "61747",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/61747"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/129660/JasPer-1.900.1-Double-Free-Heap-Overflow.html"
          },
          {
            "name": "USN-2483-2",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-2483-2"
          },
          {
            "name": "USN-2483-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-2483-1"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.ocert.org/advisories/ocert-2014-012.html"
          },
          {
            "name": "62615",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/62615"
          },
          {
            "name": "1033459",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1033459"
          },
          {
            "name": "RHSA-2015:0698",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-0698.html"
          },
          {
            "name": "openSUSE-SU-2015:0039",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2015-01/msg00014.html"
          },
          {
            "name": "62311",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/62311"
          },
          {
            "name": "RHSA-2014:2021",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2014-2021.html"
          },
          {
            "name": "71742",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/71742"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://advisories.mageia.org/MGASA-2014-0539.html"
          },
          {
            "name": "SSA:2015-302-02",
            "tags": [
              "vendor-advisory",
              "x_refsource_SLACKWARE",
              "x_transferred"
            ],
            "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606"
          },
          {
            "name": "MDVSA-2015:159",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:159"
          },
          {
            "name": "RHSA-2015:1713",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-1713.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2014-12-18T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Double free vulnerability in the jas_iccattrval_destroy function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted ICC color profile in a JPEG 2000 image file."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-01-04T19:57:01",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "MDVSA-2015:012",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:012"
        },
        {
          "name": "DSA-3106",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2014/dsa-3106"
        },
        {
          "name": "62619",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/62619"
        },
        {
          "name": "openSUSE-SU-2015:0038",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2015-01/msg00013.html"
        },
        {
          "name": "openSUSE-SU-2015:0042",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2015-01/msg00017.html"
        },
        {
          "name": "61747",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/61747"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/129660/JasPer-1.900.1-Double-Free-Heap-Overflow.html"
        },
        {
          "name": "USN-2483-2",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-2483-2"
        },
        {
          "name": "USN-2483-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-2483-1"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.ocert.org/advisories/ocert-2014-012.html"
        },
        {
          "name": "62615",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/62615"
        },
        {
          "name": "1033459",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1033459"
        },
        {
          "name": "RHSA-2015:0698",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-0698.html"
        },
        {
          "name": "openSUSE-SU-2015:0039",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2015-01/msg00014.html"
        },
        {
          "name": "62311",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/62311"
        },
        {
          "name": "RHSA-2014:2021",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2014-2021.html"
        },
        {
          "name": "71742",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/71742"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://advisories.mageia.org/MGASA-2014-0539.html"
        },
        {
          "name": "SSA:2015-302-02",
          "tags": [
            "vendor-advisory",
            "x_refsource_SLACKWARE"
          ],
          "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606"
        },
        {
          "name": "MDVSA-2015:159",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:159"
        },
        {
          "name": "RHSA-2015:1713",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-1713.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2014-8137",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Double free vulnerability in the jas_iccattrval_destroy function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted ICC color profile in a JPEG 2000 image file."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "MDVSA-2015:012",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:012"
            },
            {
              "name": "DSA-3106",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2014/dsa-3106"
            },
            {
              "name": "62619",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/62619"
            },
            {
              "name": "openSUSE-SU-2015:0038",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2015-01/msg00013.html"
            },
            {
              "name": "openSUSE-SU-2015:0042",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2015-01/msg00017.html"
            },
            {
              "name": "61747",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/61747"
            },
            {
              "name": "http://packetstormsecurity.com/files/129660/JasPer-1.900.1-Double-Free-Heap-Overflow.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/129660/JasPer-1.900.1-Double-Free-Heap-Overflow.html"
            },
            {
              "name": "USN-2483-2",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/USN-2483-2"
            },
            {
              "name": "USN-2483-1",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/USN-2483-1"
            },
            {
              "name": "https://www.ocert.org/advisories/ocert-2014-012.html",
              "refsource": "MISC",
              "url": "https://www.ocert.org/advisories/ocert-2014-012.html"
            },
            {
              "name": "62615",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/62615"
            },
            {
              "name": "1033459",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1033459"
            },
            {
              "name": "RHSA-2015:0698",
              "refsource": "REDHAT",
              "url": "http://rhn.redhat.com/errata/RHSA-2015-0698.html"
            },
            {
              "name": "openSUSE-SU-2015:0039",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2015-01/msg00014.html"
            },
            {
              "name": "62311",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/62311"
            },
            {
              "name": "RHSA-2014:2021",
              "refsource": "REDHAT",
              "url": "http://rhn.redhat.com/errata/RHSA-2014-2021.html"
            },
            {
              "name": "71742",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/71742"
            },
            {
              "name": "http://advisories.mageia.org/MGASA-2014-0539.html",
              "refsource": "CONFIRM",
              "url": "http://advisories.mageia.org/MGASA-2014-0539.html"
            },
            {
              "name": "SSA:2015-302-02",
              "refsource": "SLACKWARE",
              "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606"
            },
            {
              "name": "MDVSA-2015:159",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:159"
            },
            {
              "name": "RHSA-2015:1713",
              "refsource": "REDHAT",
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1713.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2014-8137",
    "datePublished": "2014-12-24T18:00:00",
    "dateReserved": "2014-10-10T00:00:00",
    "dateUpdated": "2024-08-06T13:10:50.959Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

cve-2015-1841

Vulnerability from cvelistv5

Published

2015-09-08 15:00

Modified

2024-08-06 04:54

Severity ?

Summary

The Web Admin interface in Red Hat Enterprise Virtualization Manager (RHEV-M) allows local users to bypass the timeout function by selecting a VM in the VM grid view.

References

▼	URL	Tags
	http://www.securitytracker.com/id/1033459	vdb-entry, x_refsource_SECTRACK
	http://rhn.redhat.com/errata/RHSA-2015-1713.html	vendor-advisory, x_refsource_REDHAT

Impacted products

Vendor

Product

Version

▼

n/a

Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T04:54:16.320Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "1033459",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1033459"
          },
          {
            "name": "RHSA-2015:1713",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-1713.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2015-09-03T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The Web Admin interface in Red Hat Enterprise Virtualization Manager (RHEV-M) allows local users to bypass the timeout function by selecting a VM in the VM grid view."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2015-09-08T14:57:02",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "1033459",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1033459"
        },
        {
          "name": "RHSA-2015:1713",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-1713.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2015-1841",
    "datePublished": "2015-09-08T15:00:00",
    "dateReserved": "2015-02-17T00:00:00",
    "dateUpdated": "2024-08-06T04:54:16.320Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

cve-2015-3247

Vulnerability from cvelistv5

Published

2015-09-08 15:00

Modified

2024-08-06 05:39

Severity ?

Summary

Race condition in the worker_update_monitors_config function in SPICE 0.12.4 allows a remote authenticated guest user to cause a denial of service (heap-based memory corruption and QEMU-KVM crash) or possibly execute arbitrary code on the host via unspecified vectors.

References

▼	URL	Tags
	http://www.ubuntu.com/usn/USN-2736-1	vendor-advisory, x_refsource_UBUNTU
	http://www.debian.org/security/2015/dsa-3354	vendor-advisory, x_refsource_DEBIAN
	http://rhn.redhat.com/errata/RHSA-2015-1715.html	vendor-advisory, x_refsource_REDHAT
	http://lists.freedesktop.org/archives/spice-devel/2015-October/022191.html	mailing-list, x_refsource_MLIST
	http://lists.opensuse.org/opensuse-updates/2015-09/msg00018.html	vendor-advisory, x_refsource_SUSE
	http://www.securitytracker.com/id/1033460	vdb-entry, x_refsource_SECTRACK
	http://www.securitytracker.com/id/1033459	vdb-entry, x_refsource_SECTRACK
	http://www.securitytracker.com/id/1033753	vdb-entry, x_refsource_SECTRACK
	http://rhn.redhat.com/errata/RHSA-2015-1714.html	vendor-advisory, x_refsource_REDHAT
	http://rhn.redhat.com/errata/RHSA-2015-1713.html	vendor-advisory, x_refsource_REDHAT

Impacted products

Vendor

Product

Version

▼

n/a

Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T05:39:32.149Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "USN-2736-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-2736-1"
          },
          {
            "name": "DSA-3354",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2015/dsa-3354"
          },
          {
            "name": "RHSA-2015:1715",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-1715.html"
          },
          {
            "name": "[Spice-devel] 20151006 Announcing spice 0.12.6",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://lists.freedesktop.org/archives/spice-devel/2015-October/022191.html"
          },
          {
            "name": "openSUSE-SU-2015:1566",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2015-09/msg00018.html"
          },
          {
            "name": "1033460",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1033460"
          },
          {
            "name": "1033459",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1033459"
          },
          {
            "name": "1033753",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1033753"
          },
          {
            "name": "RHSA-2015:1714",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-1714.html"
          },
          {
            "name": "RHSA-2015:1713",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-1713.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2015-09-03T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Race condition in the worker_update_monitors_config function in SPICE 0.12.4 allows a remote authenticated guest user to cause a denial of service (heap-based memory corruption and QEMU-KVM crash) or possibly execute arbitrary code on the host via unspecified vectors."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-09-15T09:57:01",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "USN-2736-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-2736-1"
        },
        {
          "name": "DSA-3354",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2015/dsa-3354"
        },
        {
          "name": "RHSA-2015:1715",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-1715.html"
        },
        {
          "name": "[Spice-devel] 20151006 Announcing spice 0.12.6",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://lists.freedesktop.org/archives/spice-devel/2015-October/022191.html"
        },
        {
          "name": "openSUSE-SU-2015:1566",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2015-09/msg00018.html"
        },
        {
          "name": "1033460",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1033460"
        },
        {
          "name": "1033459",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1033459"
        },
        {
          "name": "1033753",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1033753"
        },
        {
          "name": "RHSA-2015:1714",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-1714.html"
        },
        {
          "name": "RHSA-2015:1713",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-1713.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2015-3247",
    "datePublished": "2015-09-08T15:00:00",
    "dateReserved": "2015-04-10T00:00:00",
    "dateUpdated": "2024-08-06T05:39:32.149Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

cve-2014-8138

Vulnerability from cvelistv5

Published

2014-12-24 18:00

Modified

2024-08-06 13:10

Severity ?

Summary

Heap-based buffer overflow in the jp2_decode function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 2000 file.

References

▼	URL	Tags
	http://www.mandriva.com/security/advisories?name=MDVSA-2015:012	vendor-advisory, x_refsource_MANDRIVA
	http://www.debian.org/security/2014/dsa-3106	vendor-advisory, x_refsource_DEBIAN
	http://secunia.com/advisories/62619	third-party-advisory, x_refsource_SECUNIA
	http://lists.opensuse.org/opensuse-updates/2015-01/msg00013.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-updates/2015-01/msg00017.html	vendor-advisory, x_refsource_SUSE
	http://secunia.com/advisories/61747	third-party-advisory, x_refsource_SECUNIA
	http://packetstormsecurity.com/files/129660/JasPer-1.900.1-Double-Free-Heap-Overflow.html	x_refsource_MISC
	http://www.ubuntu.com/usn/USN-2483-2	vendor-advisory, x_refsource_UBUNTU
	http://www.ubuntu.com/usn/USN-2483-1	vendor-advisory, x_refsource_UBUNTU
	https://www.ocert.org/advisories/ocert-2014-012.html	x_refsource_MISC
	http://secunia.com/advisories/62615	third-party-advisory, x_refsource_SECUNIA
	http://www.securitytracker.com/id/1033459	vdb-entry, x_refsource_SECTRACK
	http://rhn.redhat.com/errata/RHSA-2015-0698.html	vendor-advisory, x_refsource_REDHAT
	http://lists.opensuse.org/opensuse-updates/2015-01/msg00014.html	vendor-advisory, x_refsource_SUSE
	http://secunia.com/advisories/62311	third-party-advisory, x_refsource_SECUNIA
	http://rhn.redhat.com/errata/RHSA-2014-2021.html	vendor-advisory, x_refsource_REDHAT
	http://www.securityfocus.com/bid/71746	vdb-entry, x_refsource_BID
	http://advisories.mageia.org/MGASA-2014-0539.html	x_refsource_CONFIRM
	http://www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.538606	vendor-advisory, x_refsource_SLACKWARE
	http://www.mandriva.com/security/advisories?name=MDVSA-2015:159	vendor-advisory, x_refsource_MANDRIVA
	http://rhn.redhat.com/errata/RHSA-2015-1713.html	vendor-advisory, x_refsource_REDHAT

Impacted products

Vendor

Product

Version

▼

n/a

Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T13:10:50.912Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "MDVSA-2015:012",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:012"
          },
          {
            "name": "DSA-3106",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2014/dsa-3106"
          },
          {
            "name": "62619",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/62619"
          },
          {
            "name": "openSUSE-SU-2015:0038",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2015-01/msg00013.html"
          },
          {
            "name": "openSUSE-SU-2015:0042",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2015-01/msg00017.html"
          },
          {
            "name": "61747",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/61747"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/129660/JasPer-1.900.1-Double-Free-Heap-Overflow.html"
          },
          {
            "name": "USN-2483-2",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-2483-2"
          },
          {
            "name": "USN-2483-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-2483-1"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.ocert.org/advisories/ocert-2014-012.html"
          },
          {
            "name": "62615",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/62615"
          },
          {
            "name": "1033459",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1033459"
          },
          {
            "name": "RHSA-2015:0698",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-0698.html"
          },
          {
            "name": "openSUSE-SU-2015:0039",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2015-01/msg00014.html"
          },
          {
            "name": "62311",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/62311"
          },
          {
            "name": "RHSA-2014:2021",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2014-2021.html"
          },
          {
            "name": "71746",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/71746"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://advisories.mageia.org/MGASA-2014-0539.html"
          },
          {
            "name": "SSA:2015-302-02",
            "tags": [
              "vendor-advisory",
              "x_refsource_SLACKWARE",
              "x_transferred"
            ],
            "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606"
          },
          {
            "name": "MDVSA-2015:159",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:159"
          },
          {
            "name": "RHSA-2015:1713",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-1713.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2014-12-18T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Heap-based buffer overflow in the jp2_decode function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 2000 file."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-01-04T19:57:01",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "MDVSA-2015:012",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:012"
        },
        {
          "name": "DSA-3106",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2014/dsa-3106"
        },
        {
          "name": "62619",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/62619"
        },
        {
          "name": "openSUSE-SU-2015:0038",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2015-01/msg00013.html"
        },
        {
          "name": "openSUSE-SU-2015:0042",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2015-01/msg00017.html"
        },
        {
          "name": "61747",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/61747"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/129660/JasPer-1.900.1-Double-Free-Heap-Overflow.html"
        },
        {
          "name": "USN-2483-2",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-2483-2"
        },
        {
          "name": "USN-2483-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-2483-1"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.ocert.org/advisories/ocert-2014-012.html"
        },
        {
          "name": "62615",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/62615"
        },
        {
          "name": "1033459",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1033459"
        },
        {
          "name": "RHSA-2015:0698",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-0698.html"
        },
        {
          "name": "openSUSE-SU-2015:0039",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2015-01/msg00014.html"
        },
        {
          "name": "62311",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/62311"
        },
        {
          "name": "RHSA-2014:2021",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2014-2021.html"
        },
        {
          "name": "71746",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/71746"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://advisories.mageia.org/MGASA-2014-0539.html"
        },
        {
          "name": "SSA:2015-302-02",
          "tags": [
            "vendor-advisory",
            "x_refsource_SLACKWARE"
          ],
          "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606"
        },
        {
          "name": "MDVSA-2015:159",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:159"
        },
        {
          "name": "RHSA-2015:1713",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-1713.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2014-8138",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Heap-based buffer overflow in the jp2_decode function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 2000 file."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "MDVSA-2015:012",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:012"
            },
            {
              "name": "DSA-3106",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2014/dsa-3106"
            },
            {
              "name": "62619",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/62619"
            },
            {
              "name": "openSUSE-SU-2015:0038",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2015-01/msg00013.html"
            },
            {
              "name": "openSUSE-SU-2015:0042",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2015-01/msg00017.html"
            },
            {
              "name": "61747",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/61747"
            },
            {
              "name": "http://packetstormsecurity.com/files/129660/JasPer-1.900.1-Double-Free-Heap-Overflow.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/129660/JasPer-1.900.1-Double-Free-Heap-Overflow.html"
            },
            {
              "name": "USN-2483-2",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/USN-2483-2"
            },
            {
              "name": "USN-2483-1",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/USN-2483-1"
            },
            {
              "name": "https://www.ocert.org/advisories/ocert-2014-012.html",
              "refsource": "MISC",
              "url": "https://www.ocert.org/advisories/ocert-2014-012.html"
            },
            {
              "name": "62615",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/62615"
            },
            {
              "name": "1033459",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1033459"
            },
            {
              "name": "RHSA-2015:0698",
              "refsource": "REDHAT",
              "url": "http://rhn.redhat.com/errata/RHSA-2015-0698.html"
            },
            {
              "name": "openSUSE-SU-2015:0039",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2015-01/msg00014.html"
            },
            {
              "name": "62311",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/62311"
            },
            {
              "name": "RHSA-2014:2021",
              "refsource": "REDHAT",
              "url": "http://rhn.redhat.com/errata/RHSA-2014-2021.html"
            },
            {
              "name": "71746",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/71746"
            },
            {
              "name": "http://advisories.mageia.org/MGASA-2014-0539.html",
              "refsource": "CONFIRM",
              "url": "http://advisories.mageia.org/MGASA-2014-0539.html"
            },
            {
              "name": "SSA:2015-302-02",
              "refsource": "SLACKWARE",
              "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606"
            },
            {
              "name": "MDVSA-2015:159",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:159"
            },
            {
              "name": "RHSA-2015:1713",
              "refsource": "REDHAT",
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1713.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2014-8138",
    "datePublished": "2014-12-24T18:00:00",
    "dateReserved": "2014-10-10T00:00:00",
    "dateUpdated": "2024-08-06T13:10:50.912Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

rhsa-2015_1713

Vulnerability from csaf_redhat

cve-2014-8137

Vulnerability from cvelistv5

cve-2015-1841

Vulnerability from cvelistv5

cve-2015-3247

Vulnerability from cvelistv5

cve-2014-8138

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature