FEDORA-2016-81f9c6f0ae — security update for jasper

stable

jasper-1.900.13-1.fc25

FEDORA-2016-81f9c6f0ae created by jridky 8 years ago for Fedora 25

New version of jasper is available (jasper-1.900.13). Security fix for CVE-2016-8690, CVE-2016-8691, CVE-2016-8692, CVE-2016-8693.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2016-81f9c6f0ae

This update has been submitted for testing by jridky.

8 years ago

This update has been pushed to testing.

8 years ago

pwalter commented & provided feedback 8 years ago

karma

Works

cairo provided feedback 8 years ago

karma

kuosmanen commented & provided feedback 8 years ago

karma

Working fine for me.

cserpentis commented & provided feedback 8 years ago

karma

works for me

This update has been submitted for stable by bodhi.

8 years ago

lupinix commented & provided feedback 8 years ago

karma

works

This update has been pushed to stable.

8 years ago

Please login to add feedback.

Metadata

Type

security

Karma

Signed

Content Type

RPM

Test Gating

None

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

disabled

Dates

submitted

8 years ago

in testing

8 years ago

in stable

8 years ago

Builds

jasper-1.900.13-1.fc25

BZ#1385499 CVE-2016-8690 jasper: Null pointer dereference in bmp_getdata triggered by crafted BMP image

BZ#1385502 CVE-2016-8691 jasper: Divide by zero in jpc_dec_process_siz

BZ#1385503 CVE-2016-8692 jasper: Divide by zero in jpc_dec_process_siz

BZ#1385507 CVE-2016-8693 jasper: Double free vulnerability in mem_close

BZ#1385516 CVE-2016-8690 CVE-2016-8691 CVE-2016-8692 CVE-2016-8693 jasper: various flaws [fedora-all]

BZ#1385637 jasper-1.900.13 is available

jasper-1.900.13-1.fc25

Automated Test Results

None