Parent Directory
| 
Revision Log
MGASA-2019-0167: jasper-1.900.23-5.2.mga6
| 1 | tmb | 8504 | type: security |
| 2 | subject: Updated jasper packages fix security vulnerabilities | ||
| 3 | CVE: | ||
| 4 | - CVE-2016-9398 | ||
| 5 | - CVE-2018-19542 | ||
| 6 | - CVE-2018-19539 | ||
| 7 | src: | ||
| 8 | 6: | ||
| 9 | core: | ||
| 10 | - jasper-1.900.23-5.2.mga6 | ||
| 11 | description: | | ||
| 12 | Updated jasper packages fix security vulnerabilities: | ||
| 13 | |||
| 14 | The jpc_floorlog2 function in jpc_math.c in JasPer before 1.900.17 | ||
| 15 | allows remote attackers to cause a denial of service (assertion failure) | ||
| 16 | via unspecified vectors (CVE-2016-9398). | ||
| 17 | |||
| 18 | A denial of service in jp2_decode (CVE-2018-19542). | ||
| 19 | |||
| 20 | A denial of service in jas_image_readcmpt (CVE-2018-19539). | ||
| 21 | references: | ||
| 22 | - https://bugs.mageia.org/show_bug.cgi?id=24760 | ||
| 23 | - https://lists.opensuse.org/opensuse-updates/2019-05/msg00017.html | ||
| 24 | tmb | 8532 | ID: MGASA-2019-0167 |
| ViewVC Help | |
| Powered by ViewVC 1.1.30 |