FEDORA-EPEL-2015-5975 — security update for jasper

stable

jasper-1.900.1-15.el5

FEDORA-EPEL-2015-5975 created by rdieter 11 years ago for Fedora EPEL 5

Fix various (mostly security related) flaws.

This update has been submitted for testing by rdieter.

11 years ago

This update is currently being pushed to the Fedora EPEL 5 testing updates repository.

11 years ago

This update has been pushed to testing

11 years ago

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

11 years ago

This update has been submitted for stable by rdieter.

11 years ago

This update is currently being pushed to the Fedora EPEL 5 stable updates repository.

11 years ago

This update has been pushed to stable

11 years ago

Please log in to add feedback.

Metadata

Type

security

Karma

Signed

Content Type

RPM

Test Gating

None

Autopush Settings

Unstable by Karma

-3

Stable by Karma

disabled

Stable by Time

disabled

Dates

submitted

11 years ago

in testing

11 years ago

in stable

11 years ago

Builds

jasper-1.900.1-15.el5

BZ#1167537 CVE-2014-9029 jasper: incorrect component number check in COC, RGN and QCC marker segment decoders (oCERT-2014-009)

BZ#1170654 CVE-2014-9029 jasper: incorrect component number check in COC, RGN and QCC marker segment decoders (oCERT-2014-009) [epel-5]

BZ#1173157 CVE-2014-8137 jasper: double-free in in jas_iccattrval_destroy() (oCERT-2014-012)

BZ#1173162 CVE-2014-8138 jasper: heap overflow in jp2_decode() (oCERT-2014-012)

BZ#1175763 CVE-2014-8138 CVE-2014-8137 jasper: various flaws [epel-5]

BZ#1179282 CVE-2014-8157 jasper: dec->numtiles off-by-one check in jpc_dec_process_sot() (oCERT-2015-001)

BZ#1179298 CVE-2014-8158 jasper: unrestricted stack memory use in jpc_qmfb.c (oCERT-2015-001)

BZ#1184752 CVE-2014-8157 CVE-2014-8158 jasper: various flaws [epel-5]

jasper-1.900.1-15.el5

Automated Test Results

None