[ubuntu/oneiric-security] jasper 1.900.1-7ubuntu2.11.10.1 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Tue Dec 20 15:03:23 UTC 2011 

jasper (1.900.1-7ubuntu2.11.10.1) oneiric-security; urgency=low

  * SECURITY UPDATE: denial of service and possible code execution via
    heap-based buffer overflows.
    - src/libjasper/jpc/jpc_cs.c: validate compparms->numrlvls and allocate
      proper size in src/libjasper/jpc/jpc_cs.c.
    - Thanks to Red Hat for the patch
    - CVE-2011-4516
    - CVE-2011-4517

Date: Mon, 19 Dec 2011 10:43:09 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/oneiric/+source/jasper/1.900.1-7ubuntu2.11.10.1
-------------- next part --------------
Format: 1.8
Date: Mon, 19 Dec 2011 10:43:09 -0500
Source: jasper
Binary: libjasper1 libjasper-dev libjasper-runtime
Architecture: source
Version: 1.900.1-7ubuntu2.11.10.1
Distribution: oneiric-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 libjasper-dev - Development files for the JasPer JPEG-2000 library
 libjasper-runtime - Programs for manipulating JPEG-2000 files
 libjasper1 - The JasPer JPEG-2000 runtime library
Changes: 
 jasper (1.900.1-7ubuntu2.11.10.1) oneiric-security; urgency=low
 .
   * SECURITY UPDATE: denial of service and possible code execution via
     heap-based buffer overflows.
     - src/libjasper/jpc/jpc_cs.c: validate compparms->numrlvls and allocate
       proper size in src/libjasper/jpc/jpc_cs.c.
     - Thanks to Red Hat for the patch
     - CVE-2011-4516
     - CVE-2011-4517
Checksums-Sha1: 
 be51fb9130acd220f183fc0287bbf04537ac49ad 1845 jasper_1.900.1-7ubuntu2.11.10.1.dsc
 9683d25e0bdec86d90ea477adeb6fbf94be5ff5f 53787 jasper_1.900.1-7ubuntu2.11.10.1.diff.gz
Checksums-Sha256: 
 f94a728cf2aa72d96f53517bb66149894acd14237bfe40ed0e17b53a60bb1089 1845 jasper_1.900.1-7ubuntu2.11.10.1.dsc
 25287bb52a5dea3da3f83affb7ccef69c176b554c0a27cb3c0dcc44969afec3c 53787 jasper_1.900.1-7ubuntu2.11.10.1.diff.gz
Files: 
 a029e27f331670da849397d7365ad2ad 1845 graphics optional jasper_1.900.1-7ubuntu2.11.10.1.dsc
 14fe64880fff6b1ea7ce987bf444abb9 53787 graphics optional jasper_1.900.1-7ubuntu2.11.10.1.diff.gz
Original-Maintainer: Roland Stigge <stigge at antcom.de>

More information about the Oneiric-changes mailing list