Parent Directory
| 
Revision Log
MGASA-2020-0463: jasper-2.0.23-1.mga7
| 1 | type: security |
| 2 | subject: Updated jasper packages fix security vulnerability |
| 3 | CVE: |
| 4 | - CVE-2020-27828 |
| 5 | src: |
| 6 | 7: |
| 7 | core: |
| 8 | - jasper-2.0.23-1.mga7 |
| 9 | description: | |
| 10 | There's a flaw in jasper's jpc encoder in versions prior to 2.0.23. Crafted |
| 11 | input provided to jasper by an attacker could cause an arbitrary out-of-bounds |
| 12 | write. This could potentially affect data confidentiality, integrity, or |
| 13 | application availability (CVE-2020-27828). |
| 14 | references: |
| 15 | - https://bugs.mageia.org/show_bug.cgi?id=27842 |
| 16 | - https://github.com/jasper-software/jasper/releases/tag/version-2.0.23 |
| 17 | ID: MGASA-2020-0463 |
| ViewVC Help | |
| Powered by ViewVC 1.1.30 |