CVE-2016-8654
- Source
- https://cve.org/CVERecord?id=CVE-2016-8654
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-8654.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2016-8654
- Downstream
- Related
- Published
- 2018-08-01T16:29:00.337Z
- Modified
- 2026-02-24T11:15:47.579340Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
A heap-buffer overflow vulnerability was found in QMFB code in JPC codec caused by buffer being allocated with too small size. jasper versions before 2.0.0 are affected.
- References
-
- http://www.securityfocus.com/bid/94583
- https://access.redhat.com/errata/RHSA-2017:1208
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8654
- https://github.com/mdadams/jasper/commit/4a59cfaf9ab3d48fca4a15c0d2674bf7138e3d1a
- https://github.com/mdadams/jasper/issues/93
- https://github.com/mdadams/jasper/issues/94
- https://www.debian.org/security/2017/dsa-3785
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8654
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8654
- https://github.com/mdadams/jasper/commit/4a59cfaf9ab3d48fca4a15c0d2674bf7138e3d1a
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8654
- https://github.com/mdadams/jasper/issues/93
- https://github.com/mdadams/jasper/issues/94
Affected packages
Git / github.com/libical/libical
Affected ranges
- Type
- GIT
- Repo
- https://github.com/libical/libical
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Database specific
vanir_signatures
[
{
"id": "CVE-2016-8654-8d9bcd47",
"deprecated": false,
"digest": {
"line_hashes": [
"32379107635760517463906190990511178911",
"4824883439742810549095394552660055721",
"293609696538195385354607117779337955377",
"270094464555053143627171964582395645288",
"299255982761073250290901311311173339522",
"183571298264298118082596065937011364920",
"322638607606284472434488234610908038935",
"256847713210462514471911739382999361621",
"56389296240823746776568102698573556574",
"51599552068836077207635441291127671991",
"34639067266820657038813769925844951654",
"41536786657921808960723575340719172627",
"270340725101883853373469519938458848702",
"223704825774965639713007350691806133670",
"205456725455984077748790698941637642022",
"300375683770529017229210001941914729310",
"11875042442682687812636252605236393010"
],
"threshold": 0.9
},
"signature_version": "v1",
"target": {
"file": "src/libicalss/icalbdbset_cxx.h"
},
"source": "https://github.com/libical/libical/commit/6c4af23b0a95fd105f38e879908cbc80390f3716",
"signature_type": "Line"
}
]
source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-8654.json"