Mageia Bugzilla – Attachment 10231 Details for
Bug 23139
jasper missing fix for security issue CVE-2016-9396 and new security issue CVE-2018-9055
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
Log In
[x]
|
New Account
|
Forgot Password
Brief description of PoC tests for various CVEs
report.23139 (text/plain), 1.52 KB, created by
Len Lawrence
on 2018-06-09 18:27:05 CEST
(
hide
)
Description:
Brief description of PoC tests for various CVEs
Filename:
MIME Type:
Creator:
Len Lawrence
Created:
2018-06-09 18:27:05 CEST
Size:
1.52 KB
patch
obsolete
>Mageia 6, x86_64 > >CVE-2018-9055 >https://github.com/TeamSeri0us/pocs/blob/master/jasper/poc >$ jasper --input poc --input-format jpc --output out.jp2 >https://bugzilla.suse.com/show_bug.cgi?id=1087020 > >CVE-2016-9387 >https://github.com/asarubbo/poc/blob/master/00003-jasper-assert-jas_matrix_t > >CVE-2016-9388 >https://github.com/asarubbo/poc/blob/master/00005-jasper-assert-ras_getcmap > >CVE-2016-9389 >https://github.com/asarubbo/poc/blob/master/00006-jasper-assert-jpc_irct >https://github.com/asarubbo/poc/blob/master/00008-jasper-assert-jpc_iict > >CVE-2016-9390 >https://github.com/asarubbo/poc/blob/master/00007-jasper-assert-jas_matrix_t > >CVE-2016-9391 >https://github.com/asarubbo/poc/blob/master/00014-jasper-assert-jpc_bitstream_getbits > >CVE-2016-9392 >https://github.com/asarubbo/poc/blob/master/00012-jasper-assert-calcstepsizes > >CVE-2016-9393 >https://github.com/asarubbo/poc/blob/master/00013-jasper-assert-jpc_pi_nextrpcl > >CVE-2016-9394 >https://github.com/asarubbo/poc/blob/master/00016-jasper-assert-jas_matrix_t > >CVE-2016-9395 >https://github.com/asarubbo/poc/blob/master/00043-jasper-assert-jas_matrix_t > >CVE-2016-9396 >https://github.com/asarubbo/poc/blob/master/00004-jasper-assert-JPC_NOMINALGAIN >https://bugzilla.redhat.com/show_bug.cgi?id=1485272 >$ imginfo -f POC1 > >CVE-2016-9397 >https://github.com/asarubbo/poc/blob/master/00010-jasper-assert-jpc_dequantize > >CVE-2016-9398 >https://github.com/asarubbo/poc/blob/master/00023-jasper-assert-jpc_floorlog2 > >CVE-2016-9399 >https://github.com/asarubbo/poc/blob/master/00044-jasper-assert-calcstepsizes >
Mageia 6, x86_64 CVE-2018-9055 https://github.com/TeamSeri0us/pocs/blob/master/jasper/poc $ jasper --input poc --input-format jpc --output out.jp2 https://bugzilla.suse.com/show_bug.cgi?id=1087020 CVE-2016-9387 https://github.com/asarubbo/poc/blob/master/00003-jasper-assert-jas_matrix_t CVE-2016-9388 https://github.com/asarubbo/poc/blob/master/00005-jasper-assert-ras_getcmap CVE-2016-9389 https://github.com/asarubbo/poc/blob/master/00006-jasper-assert-jpc_irct https://github.com/asarubbo/poc/blob/master/00008-jasper-assert-jpc_iict CVE-2016-9390 https://github.com/asarubbo/poc/blob/master/00007-jasper-assert-jas_matrix_t CVE-2016-9391 https://github.com/asarubbo/poc/blob/master/00014-jasper-assert-jpc_bitstream_getbits CVE-2016-9392 https://github.com/asarubbo/poc/blob/master/00012-jasper-assert-calcstepsizes CVE-2016-9393 https://github.com/asarubbo/poc/blob/master/00013-jasper-assert-jpc_pi_nextrpcl CVE-2016-9394 https://github.com/asarubbo/poc/blob/master/00016-jasper-assert-jas_matrix_t CVE-2016-9395 https://github.com/asarubbo/poc/blob/master/00043-jasper-assert-jas_matrix_t CVE-2016-9396 https://github.com/asarubbo/poc/blob/master/00004-jasper-assert-JPC_NOMINALGAIN https://bugzilla.redhat.com/show_bug.cgi?id=1485272 $ imginfo -f POC1 CVE-2016-9397 https://github.com/asarubbo/poc/blob/master/00010-jasper-assert-jpc_dequantize CVE-2016-9398 https://github.com/asarubbo/poc/blob/master/00023-jasper-assert-jpc_floorlog2 CVE-2016-9399 https://github.com/asarubbo/poc/blob/master/00044-jasper-assert-calcstepsizes
View Attachment As Raw
Actions:
View
Attachments on
bug 23139
:
10231
|
10232
|
10233