SUSE-SU-2024:0240-1 Security update for jasper

This update for jasper fixes the following issues: - CVE-2023-51257: Fixed an out of bounds write in the JPC encoder bsc1218802...

SUSE-SU-2021:0489-1 Security update for jasper

This update for jasper fixes the following issues: - bsc1179748 CVE-2020-27828: Fix heap overflow by checking maxrlvls - bsc1181483 CVE-2021-3272: Fix buffer over-read in jp2decode...

SUSE-SU-2021:0488-1 Security update for jasper

This update for jasper fixes the following issues: - bsc1179748 CVE-2020-27828: Fix heap overflow by checking maxrlvls - bsc1181483 CVE-2021-3272: Fix buffer over-read in jp2decode...

OPENSUSE-SU-2020:1523-1 Security update for jasper

This update for jasper fixes the following issues: - CVE-2016-9398: Improved patch for already fixed issue bsc1010979. - CVE-2016-9399: Fix assert in calcstepsizes bsc1010980. - CVE-2017-5499: Validate component depth bit bsc1020451. - CVE-2017-5503: Check bounds in jasseq2dbindsub bsc1020456. -...

OPENSUSE-SU-2020:1517-1 Security update for jasper

This update for jasper fixes the following issues: - CVE-2016-9398: Improved patch for already fixed issue bsc1010979. - CVE-2016-9399: Fix assert in calcstepsizes bsc1010980. - CVE-2017-5499: Validate component depth bit bsc1020451. - CVE-2017-5503: Check bounds in jasseq2dbindsub bsc1020456. -...

SUSE-SU-2020:2689-1 Security update for jasper

This update for jasper fixes the following issues: - CVE-2016-9398: Improved patch for already fixed issue bsc1010979. - CVE-2016-9399: Fix assert in calcstepsizes bsc1010980. - CVE-2017-5499: Validate component depth bit bsc1020451. - CVE-2017-5503: Check bounds in jasseq2dbindsub bsc1020456. -...

OPENSUSE-SU-2019:2282-1 Security update for jasper

This update for jasper fixes the following issues: Security issues fixed: - CVE-2018-19540: Fixed a heap based overflow in jasicctxtdescinput bsc1117508. - CVE-2018-19541: Fix heap based overread in jasimagedepalettize bsc1117507. This update was imported from the SUSE:SLE-15:Update update projec...

SUSE-SU-2019:2513-1 Security update for jasper

This update for jasper fixes the following issues: Security issues fixed: - CVE-2018-19540: Fixed a heap based overflow in jasicctxtdescinput bsc1117508. - CVE-2018-19541: Fix heap based overread in jasimagedepalettize bsc1117507. - CVE-2018-19542: Fixed a denial of service in jp2decode bsc111750...

SUSE-SU-2018:0339-1 Security update for jasper

This update for jasper fixes the following issues: Security issues fixed: - CVE-2016-9262: Multiple integer overflows in the jasrealloc function in base/jasmalloc.c and memresize function in base/jasstream.c allow remote attackers to cause a denial of service via a crafted image, which triggers u...

SUSE-SU-2017:1916-1 Security update for jasper

This update for jasper fixes the following issues: Security issues fixed: - CVE-2016-9262: Multiple integer overflows in the jasrealloc function in base/jasmalloc.c and memresize function in base/jasstream.c allow remote attackers to cause a denial of service via a crafted image, which triggers u...

jasper security update

1.900.1-21 - Bump release 1.900.1-20 - Multiple security fixes fixed by thoger: CVE-2015-5203 CVE-2015-5221 CVE-2016-1577 CVE-2016-1867 CVE-2016-2089 CVE-2016-2116 CVE-2016-8654 CVE-2016-8690 CVE-2016-8691 CVE-2016-8692 CVE-2016-8693 CVE-2016-8883 CVE-2016-8884 CVE-2016-8885 CVE-2016-9262...

SUSE-SU-2017:0084-1 Security update for jasper

This update for jasper fixes the following issues: - CVE-2016-8654: Heap-based buffer overflow in QMFB code in JPC codec. bsc1012530 - CVE-2016-9395: Invalid jasper files could lead to abort of the library caused by attacker provided image. bsc1010977 - CVE-2016-9398: Invalid jasper files could...

SUSE-SU-2016:2776-1 Security update for jasper

This update for jasper fixes the following issues: Security fixes: - CVE-2016-8887: NULL pointer dereference in jp2colrdestroy jp2cod.c bsc1006836 - CVE-2016-8886: memory allocation failure in jasmalloc jasmalloc.c bsc1006599 - CVE-2016-8884,CVE-2016-8885: two null pointer dereferences in...

SUSE-SU-2016:2775-1 Security update for jasper

This update for jasper to version 1.900.14 fixes several issues. These security issues were fixed: - CVE-2016-8887: NULL pointer dereference in jp2colrdestroy jp2cod.c bsc1006836 - CVE-2016-8886: memory allocation failure in jasmalloc jasmalloc.c bsc1006599 - CVE-2016-8884,CVE-2016-8885: two null...

SUSE-SU-2015:0258-1 Security update for jasper

This update for jasper fixes the following security issues: CVE-2014-8137: Double free in jasiccattrvaldestroy. Double call to free allowed attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. bsc909474 CVE-2014-8138: Heap overflow in jasdecode. Th...

[SECURITY] [DLA 138-1] jasper security update

Package : jasper Version : 1.900.1-7+squeeze4 CVE ID : CVE-2014-8157 CVE-2014-8158 Debian Bug : 775970 An off-by-one flaw, leading to a heap-based buffer overflow CVE-2014-8157, and an unrestricted stack memory use flaw CVE-2014-8158 were found in JasPer, a library for manipulating JPEG-2000 file...