[SECURITY] jasper
Dr. Volker, Several CVEs have been made public for jasper. Could you please ship a new release with the following patches: http://pkgs.fedoraproject.org/cgit/rpms/jasper.git/plain/jasper-CVE-2014-8157.patch http://pkgs.fedoraproject.org/cgit/rpms/jasper.git/plain/jasper-CVE-2014-8158.patch http://pkgs.fedoraproject.org/cgit/rpms/jasper.git/plain/jasper-CVE-2015-5221.patch http://pkgs.fedoraproject.org/cgit/rpms/jasper.git/plain/jasper-CVE-2016-1867.patch http://pkgs.fedoraproject.org/cgit/rpms/jasper.git/plain/jasper-CVE-2016-1577.patch http://pkgs.fedoraproject.org/cgit/rpms/jasper.git/plain/jasper-CVE-2016-2116.patch -- Yaakov
Re: [SECURITY] jasper: CVE-2014-8137, CVE-2014-8138
On Mon, 2014-12-08 at 01:40 -0600, Yaakov Selkowitz wrote: Dr. Volker Zell, Could you please update jasper to 1.900.1-14 with the latest patchset from Fedora: http://sourceforge.net/p/cygwin-ports/jasper/ci/master/tree/ Sorry, I had the wrong CVE in $SUBJECT. The ones that have yet to be fixed in our packages are CVE-2014-8137 and CVE-2014-8138. Yaakov
Re: [SECURITY] jasper
Yaakov Selkowitz writes: Dr. Volker Zell, CVE-2014-9029 has been announced for jasper. A patch is available at: http://pkgs.fedoraproject.org/cgit/jasper.git/plain/jasper-CVE-2014-9029.patch Actually that patch is already included in the latest cygwin (32/64bit) distros. Yaakov Ciao Volker
[SECURITY] jasper
Dr. Volker Zell, CVE-2014-9029 has been announced for jasper. A patch is available at: http://pkgs.fedoraproject.org/cgit/jasper.git/plain/jasper-CVE-2014-9029.patch TIA, -- Yaakov
[SECURITY] jasper: CVE-2014-9029
Dr. Volker Zell, Could you please update jasper to 1.900.1-14 with the latest patchset from Fedora: http://sourceforge.net/p/cygwin-ports/jasper/ci/master/tree/ -- Yaakov
[SECURITY] jasper
Dr. Volker Zell, Security vulnerabilities have been announced for jasper (CVE-2011-4516, CVE-2011-4517). Please rebuild jasper ASAP with the following patch: http://sources.gentoo.org/cgi-bin/viewvc.cgi/gentoo-x86/media-libs/jasper/files/CVE-2011-4516+7.patch Yaakov
