CVE-2016-9560 — HIGH (7.8) — White Hats Nepal

Q: What is CVE-2016-9560?

CVE-2016-9560 is a vulnerability with a CVSS score of 7.8 (HIGH). Stack-based buffer overflow in the jpc_tsfb_getbands2 function in jpc_tsfb.c in JasPer before 1.900.30 allows remote attackers to have unspecified impact via a crafted image.

Q: How severe is CVE-2016-9560?

CVE-2016-9560 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2016-9560?

Check the references section above for vendor advisories and patch information. Affected products include: Jasper Project Jasper, Debian Debian Linux, Redhat Enterprise Linux Desktop, Redhat Enterprise Linux Eus, Redhat Enterprise Linux Server.

Vulnerability Description

Stack-based buffer overflow in the jpc_tsfb_getbands2 function in jpc_tsfb.c in JasPer before 1.900.30 allows remote attackers to have unspecified impact via a crafted image.

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Jasper Project	Jasper	< 1.900.30
Debian	Debian Linux	8.0
Redhat	Enterprise Linux Desktop	6.0
Redhat	Enterprise Linux Eus	7.3
Redhat	Enterprise Linux Server	6.0
Redhat	Enterprise Linux Server Aus	7.3
Redhat	Enterprise Linux Server Tus	7.3
Redhat	Enterprise Linux Workstation	6.0

Related Weaknesses (CWE)

CWE-787

References

http://www.debian.org/security/2017/dsa-3785Third Party Advisory
http://www.openwall.com/lists/oss-security/2016/11/20/1ExploitMailing ListPatch
http://www.openwall.com/lists/oss-security/2016/11/23/5Mailing ListPatchThird Party Advisory
http://www.securityfocus.com/bid/94428Third Party AdvisoryVDB Entry
https://access.redhat.com/errata/RHSA-2017:1208Third Party Advisory
https://blogs.gentoo.org/ago/2016/11/20/jasper-stack-based-buffer-overflow-in-jpExploitPatchThird Party Advisory
https://github.com/Hack-Me/Pocs_for_Multi_Versions/tree/main/CVE-2016-9560ExploitPatchThird Party Advisory
https://github.com/mdadams/jasper/commit/1abc2e5a401a4bf1d5ca4df91358ce5df111f49PatchThird Party Advisory
http://www.debian.org/security/2017/dsa-3785Third Party Advisory
http://www.openwall.com/lists/oss-security/2016/11/20/1ExploitMailing ListPatch
http://www.openwall.com/lists/oss-security/2016/11/23/5Mailing ListPatchThird Party Advisory
http://www.securityfocus.com/bid/94428Third Party AdvisoryVDB Entry
https://access.redhat.com/errata/RHSA-2017:1208Third Party Advisory
https://blogs.gentoo.org/ago/2016/11/20/jasper-stack-based-buffer-overflow-in-jpExploitPatchThird Party Advisory
https://github.com/Hack-Me/Pocs_for_Multi_Versions/tree/main/CVE-2016-9560ExploitPatchThird Party Advisory

FAQ

What is CVE-2016-9560?

CVE-2016-9560 is a vulnerability with a CVSS score of 7.8 (HIGH). Stack-based buffer overflow in the jpc_tsfb_getbands2 function in jpc_tsfb.c in JasPer before 1.900.30 allows remote attackers to have unspecified impact via a crafted image.

How severe is CVE-2016-9560?

CVE-2016-9560 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2016-9560?

Check the references section above for vendor advisories and patch information. Affected products include: Jasper Project Jasper, Debian Debian Linux, Redhat Enterprise Linux Desktop, Redhat Enterprise Linux Eus, Redhat Enterprise Linux Server.