[ubuntu/wily-updates] jasper 1.900.1-debian1-2.4ubuntu0.15.10.1 (Accepted)
Ubuntu Archive Robot
cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Thu Mar 3 14:58:20 UTC 2016
jasper (1.900.1-debian1-2.4ubuntu0.15.10.1) wily-security; urgency=medium
* SECURITY UPDATE: Denial of service or possible code execution via crafted
ICC color profile (LP: #1547865)
- debian/patches/09-CVE-2016-1577.patch: Prevent double-free in
src/libjasper/base/jas_icc.c
- CVE-2016-1577
* SECURITY UPDATE: Denial of service via resource exhaustion via crafted ICC
color profile
- debian/patches/10-CVE-2016-2116.patch: Prevent memory leak in
src/libjasper/base/jas_icc.c
- CVE-2016-2116
Date: 2016-02-26 18:20:16.277031+00:00
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/jasper/1.900.1-debian1-2.4ubuntu0.15.10.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Wily-changes
mailing list