Oval Definition:	oval:com.ubuntu.precise:def:20169262000
Revision Date: 2017-03-23 Version: 1 Title: CVE-2016-9262 on Ubuntu 12.04 LTS (precise) - medium. Description: Multiple integer overflows in the (1) jas_realloc function in base/jas_malloc.c and (2) mem_resize function in base/jas_stream.c in JasPer before 1.900.22 allow remote attackers to cause a denial of service via a crafted image, which triggers use after free vulnerabilities. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-9262 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND Package Information NOT While related to the CVE in some way, the 'ghostscript' package in precise is not affected (note: 'uses system jasper'). OR The vulnerability of the 'jasper' package in precise is not known (status: 'needs-triage'). It is pending evaluation. OR NOT While related to the CVE in some way, the 'netpbm-free' package in precise is not affected (note: 'code not present').
BACK