vulnerability

Ubuntu: USN-5405-1 (CVE-2017-9216): jbig2dec vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:N/I:N/A:P)	May 24, 2017	May 6, 2022	Aug 18, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:N/A:P)

Published

May 24, 2017

Added

May 6, 2022

Modified

Aug 18, 2025

Description

It was discovered that jbig2dec incorrectly handled memory when parsing
invalid files. An attacker could use this issue to cause jbig2dec to crash,
leading to a denial of service. (CVE-2017-9216)

It was discovered that jbig2dec incorrectly handled memory when processing
untrusted input. An attacker could use this issue to cause a denial of service,
or possibly execute arbitrary code. (CVE-2020-12268)

Solutions

ubuntu-pro-upgrade-jbig2decubuntu-pro-upgrade-libjbig2dec0

References

CVE-2017-9216
https://attackerkb.com/topics/CVE-2017-9216
CWE-476
NVD-CVE-2017-9216
UBUNTU-USN-5405-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today