libjpeg-turbo (1.3.0-0ubuntu2) trusty; urgency=low
* SECURITY UPDATE: information disclosure via uninitialized memory in
the get_sos function (LP: #1252912)
- debian/patches/CVE-2013-6629.patch: check for duplications in
jdmarker.c.
- CVE-2013-6629
* SECURITY UPDATE: information disclosure via uninitialized memory in
the get_dht function (LP: #1252912)
- debian/patches/CVE-2013-6630.patch: properly clear out memory in
jdmarker.c.
- CVE-2013-6630
Date: Thu, 19 Dec 2013 15:07:26 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ubuntu/trusty/+source/libjpeg-turbo/1.3.0-0ubuntu2
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 19 Dec 2013 15:07:26 -0500
Source: libjpeg-turbo
Binary: libjpeg-turbo8-dev libjpeg-turbo8 libturbojpeg libjpeg-turbo-progs
libjpeg-turbo8-dbg libjpeg-turbo-test
Architecture: source
Version: 1.3.0-0ubuntu2
Distribution: trusty
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Description:
libjpeg-turbo-progs - Programs for manipulating JPEG files
libjpeg-turbo-test - Program for benchmarking and testing libjpeg-turbo
libjpeg-turbo8 - IJG JPEG compliant runtime library.
libjpeg-turbo8-dbg - Debugging symbols for the libjpeg-turbo library
libjpeg-turbo8-dev - Development files for the IJG JPEG library
libturbojpeg - IJG JPEG compliant runtime library.
Launchpad-Bugs-Fixed: 1252912
Changes:
libjpeg-turbo (1.3.0-0ubuntu2) trusty; urgency=low
.
* SECURITY UPDATE: information disclosure via uninitialized memory in
the get_sos function (LP: #1252912)
- debian/patches/CVE-2013-6629.patch: check for duplications in
jdmarker.c.
- CVE-2013-6629
* SECURITY UPDATE: information disclosure via uninitialized memory in
the get_dht function (LP: #1252912)
- debian/patches/CVE-2013-6630.patch: properly clear out memory in
jdmarker.c.
- CVE-2013-6630
Checksums-Sha1:
094a303c0046e64dfcc399d5ef2d3d3adb4771a8 2247 libjpeg-turbo_1.3.0-0ubuntu2.dsc
78157f1ad5058fda495298e9530bf8a4c2bdde22 27146
libjpeg-turbo_1.3.0-0ubuntu2.debian.tar.gz
Checksums-Sha256:
41cac9ac29d2697f1d15d61842ab837fc50078fbe7020a8715c7a0beb4d52f6f 2247
libjpeg-turbo_1.3.0-0ubuntu2.dsc
f9d74e29affcc5930915b24054f5e831fcbfab11bf434501cf9359f09f9211fb 27146
libjpeg-turbo_1.3.0-0ubuntu2.debian.tar.gz
Files:
33c9c84092b105bb8a3eac03de105d2c 2247 graphics optional
libjpeg-turbo_1.3.0-0ubuntu2.dsc
f66cb4a3bc282aea7ef8a9cd4a9e9b87 27146 graphics optional
libjpeg-turbo_1.3.0-0ubuntu2.debian.tar.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (GNU/Linux)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=bLce
-----END PGP SIGNATURE-----
--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/trusty-changes
