Security update for jasper (moderate)

2019-10-07T21:14:34
ID OPENSUSE-SU-2019:2279-1
Type suse
Reporter Suse
Modified 2019-10-07T21:14:34

Description

This update for jasper fixes the following issues:

Security issues fixed:

  • CVE-2018-19540: Fixed a heap based overflow in jas_icctxtdesc_input (bsc#1117508).
  • CVE-2018-19541: Fix heap based overread in jas_image_depalettize (bsc#1117507).

This update was imported from the SUSE:SLE-15:Update update project.