Описание
ELSA-2018-3253: jasper security update (LOW)
[1.900.1-33]
- remove implicit declaration of jas_eprintf (#1585830)
[1.900.1-32]
- Fix CVE-2016-9396 (#1583721)
- Fix CVE-2017-1000050 (#1585830)
Обновленные пакеты
Oracle Linux 7
Oracle Linux aarch64
jasper
1.900.1-33.el7
jasper-devel
1.900.1-33.el7
jasper-libs
1.900.1-33.el7
jasper-utils
1.900.1-33.el7
Oracle Linux x86_64
jasper
1.900.1-33.el7
jasper-devel
1.900.1-33.el7
jasper-libs
1.900.1-33.el7
jasper-utils
1.900.1-33.el7
Связанные CVE
Связанные уязвимости
JasPer 2.0.12 is vulnerable to a NULL pointer exception in the function jp2_encode which failed to check to see if the image contained at least one component resulting in a denial-of-service.
JasPer 2.0.12 is vulnerable to a NULL pointer exception in the function jp2_encode which failed to check to see if the image contained at least one component resulting in a denial-of-service.
JasPer 2.0.12 is vulnerable to a NULL pointer exception in the function jp2_encode which failed to check to see if the image contained at least one component resulting in a denial-of-service.
JasPer 2.0.12 is vulnerable to a NULL pointer exception in the functio ...
The JPC_NOMINALGAIN function in jpc/jpc_t1cod.c in JasPer through 2.0.12 allows remote attackers to cause a denial of service (JPC_COX_RFT assertion failure) via unspecified vectors.