Fedora

Fedora EPEL 5 Security Update: jasper-1.900.1-15.el5

Leave a comment

Resolved Bugs
1170654 – CVE-2014-9029 jasper: incorrect component number check in COC, RGN and QCC marker segment decoders (oCERT-2014-009) [epel-5]
1173162 – CVE-2014-8138 jasper: heap overflow in jp2_decode() (oCERT-2014-012)
1179282 – CVE-2014-8157 jasper: dec->numtiles off-by-one check in jpc_dec_process_sot() (oCERT-2015-001)
1184752 – CVE-2014-8157 CVE-2014-8158 jasper: various flaws [epel-5]
1167537 – CVE-2014-9029 jasper: incorrect component number check in COC, RGN and QCC marker segment decoders (oCERT-2014-009)
1173157 – CVE-2014-8137 jasper: double-free in in jas_iccattrval_destroy() (oCERT-2014-012)
1175763 – CVE-2014-8138 CVE-2014-8137 jasper: various flaws [epel-5]
1179298 – CVE-2014-8158 jasper: unrestricted stack memory use in jpc_qmfb.c (oCERT-2015-001)<br
Fix various (mostly security related) flaws.

Leave a Reply