exploitDog

SUSE-SU-2022:0562-1

Опубликовано: 24 фев. 2022

Источник: suse-cvrf

Описание

Security update for jasper

This update for jasper fixes the following issues:

CVE-2021-27845: Fixed divide-by-zery issue in cp_create() (bsc#1188437).

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP3

libjasper4-2.0.14-3.22.1

SUSE Linux Enterprise Module for Desktop Applications 15 SP3

libjasper-devel-2.0.14-3.22.1

SUSE Linux Enterprise Real Time 15 SP2

libjasper-devel-2.0.14-3.22.1

libjasper4-2.0.14-3.22.1

Ссылки

https://www.suse.com/support/update/announcement/2022/suse-su-20220562-1/
Link for SUSE-SU-2022:0562-1
https://lists.suse.com/pipermail/sle-security-updates/2022-February/010303.html
E-Mail link for SUSE-SU-2022:0562-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1188437
SUSE Bug 1188437
https://www.suse.com/security/cve/CVE-2021-27845/
SUSE CVE CVE-2021-27845 page

Описание

A Divide-by-zero vulnerability exists in JasPer Image Coding Toolkit 2.0 in jasper/src/libjasper/jpc/jpc_enc.c

Затронутые продукты

SUSE Linux Enterprise Module for Basesystem 15 SP3:libjasper4-2.0.14-3.22.1

SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libjasper-devel-2.0.14-3.22.1

SUSE Linux Enterprise Real Time 15 SP2:libjasper-devel-2.0.14-3.22.1

SUSE Linux Enterprise Real Time 15 SP2:libjasper4-2.0.14-3.22.1

Ссылки

https://www.suse.com/security/cve/CVE-2021-27845.html
CVE-2021-27845
https://bugzilla.suse.com/1188437
SUSE Bug 1188437