Parent Directory | Revision Log
MGASA-2019-0167: jasper-1.900.23-5.2.mga6
1 | tmb | 8504 | type: security |
2 | subject: Updated jasper packages fix security vulnerabilities | ||
3 | CVE: | ||
4 | - CVE-2016-9398 | ||
5 | - CVE-2018-19542 | ||
6 | - CVE-2018-19539 | ||
7 | src: | ||
8 | 6: | ||
9 | core: | ||
10 | - jasper-1.900.23-5.2.mga6 | ||
11 | description: | | ||
12 | Updated jasper packages fix security vulnerabilities: | ||
13 | |||
14 | The jpc_floorlog2 function in jpc_math.c in JasPer before 1.900.17 | ||
15 | allows remote attackers to cause a denial of service (assertion failure) | ||
16 | via unspecified vectors (CVE-2016-9398). | ||
17 | |||
18 | A denial of service in jp2_decode (CVE-2018-19542). | ||
19 | |||
20 | A denial of service in jas_image_readcmpt (CVE-2018-19539). | ||
21 | references: | ||
22 | - https://bugs.mageia.org/show_bug.cgi?id=24760 | ||
23 | - https://lists.opensuse.org/opensuse-updates/2019-05/msg00017.html | ||
24 | tmb | 8532 | ID: MGASA-2019-0167 |
ViewVC Help | |
Powered by ViewVC 1.1.30 |