/[advisories]/24760.adv
ViewVC logotype

Contents of /24760.adv

Parent Directory Parent Directory | Revision Log Revision Log


Revision 8532 - (show annotations) (download)
Sun May 12 09:02:01 2019 UTC (4 weeks, 6 days ago) by tmb
File size: 713 byte(s)
MGASA-2019-0167: jasper-1.900.23-5.2.mga6
1 type: security
2 subject: Updated jasper packages fix security vulnerabilities
3 CVE:
4 - CVE-2016-9398
5 - CVE-2018-19542
6 - CVE-2018-19539
7 src:
8 6:
9 core:
10 - jasper-1.900.23-5.2.mga6
11 description: |
12 Updated jasper packages fix security vulnerabilities:
13
14 The jpc_floorlog2 function in jpc_math.c in JasPer before 1.900.17
15 allows remote attackers to cause a denial of service (assertion failure)
16 via unspecified vectors (CVE-2016-9398).
17
18 A denial of service in jp2_decode (CVE-2018-19542).
19
20 A denial of service in jas_image_readcmpt (CVE-2018-19539).
21 references:
22 - https://bugs.mageia.org/show_bug.cgi?id=24760
23 - https://lists.opensuse.org/opensuse-updates/2019-05/msg00017.html
24 ID: MGASA-2019-0167

  ViewVC Help
Powered by ViewVC 1.1.26