Описание
Security update for jasper
This update for jasper fixes the following security issues:
*
CVE-2014-8137: Double free in jas_iccattrval_destroy(). Double call
to free() allowed attackers to cause a denial of service or possibly
have unspecified other impact via unknown vectors. (bsc#909474)
*
CVE-2014-8138: Heap overflow in jas_decode(). This could be used to
do an arbitrary write and could result in arbitrary code execution.
(bsc#909475)
*
CVE-2014-8157: Off-by-one error in the jpc_dec_process_sot(). Could
allow remote attackers to cause a denial of service (crash) or
possibly execute arbitrary code via a crafted JPEG 2000 image, which
triggers a heap-based buffer overflow. (bsc#911837)
*
CVE-2014-8158: Multiple stack-based buffer overflows in jpc_qmfb.c.
Could allow remote attackers to cause a denial of service (crash) or
possibly execute arbitrary code via a crafted JPEG 2000 image.
(bsc#911837)
Security Issues:
* CVE-2014-8138
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8138>
* CVE-2014-8137
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8137>
* CVE-2014-8157
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8157>
* CVE-2014-8158
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8158>
Список пакетов
SUSE Linux Enterprise Desktop 11 SP3
libjasper-1.900.1-134.17.1
libjasper-32bit-1.900.1-134.17.1
SUSE Linux Enterprise Server 11 SP3
libjasper-1.900.1-134.17.1
libjasper-32bit-1.900.1-134.17.1
libjasper-x86-1.900.1-134.17.1
SUSE Linux Enterprise Server 11 SP3-TERADATA
libjasper-1.900.1-134.17.1
libjasper-32bit-1.900.1-134.17.1
libjasper-x86-1.900.1-134.17.1
SUSE Linux Enterprise Server for SAP Applications 11 SP3
libjasper-1.900.1-134.17.1
libjasper-32bit-1.900.1-134.17.1
libjasper-x86-1.900.1-134.17.1
SUSE Linux Enterprise Software Development Kit 11 SP3
libjasper-devel-1.900.1-134.17.1
Ссылки
- Link for SUSE-SU-2015:0258-1
- E-Mail link for SUSE-SU-2015:0258-1
- SUSE Security Ratings
- SUSE Bug 909474
- SUSE Bug 909475
- SUSE Bug 911837
- SUSE CVE CVE-2014-8137 page
- SUSE CVE CVE-2014-8138 page
Описание
Double free vulnerability in the jas_iccattrval_destroy function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted ICC color profile in a JPEG 2000 image file.
Затронутые продукты
SUSE Linux Enterprise Desktop 11 SP3:libjasper-1.900.1-134.17.1
SUSE Linux Enterprise Desktop 11 SP3:libjasper-32bit-1.900.1-134.17.1
SUSE Linux Enterprise Server 11 SP3-TERADATA:libjasper-1.900.1-134.17.1
SUSE Linux Enterprise Server 11 SP3-TERADATA:libjasper-32bit-1.900.1-134.17.1
Ссылки
- CVE-2014-8137
- SUSE Bug 1178702
- SUSE Bug 909474
- SUSE Bug 909475
- SUSE Bug 911837
- SUSE Bug 968373
- SUSE Bug 969776
Описание
Heap-based buffer overflow in the jp2_decode function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 2000 file.
Затронутые продукты
SUSE Linux Enterprise Desktop 11 SP3:libjasper-1.900.1-134.17.1
SUSE Linux Enterprise Desktop 11 SP3:libjasper-32bit-1.900.1-134.17.1
SUSE Linux Enterprise Server 11 SP3-TERADATA:libjasper-1.900.1-134.17.1
SUSE Linux Enterprise Server 11 SP3-TERADATA:libjasper-32bit-1.900.1-134.17.1
Ссылки
- CVE-2014-8138
- SUSE Bug 1178702
- SUSE Bug 909474
- SUSE Bug 909475
- SUSE Bug 911837
- SUSE Bug 969776