[ubuntu/wily-updates] jasper 1.900.1-debian1-2.4ubuntu0.15.10.1 (Accepted)

Thu, 03 Mar 2016 06:59:15 -0800 

jasper (1.900.1-debian1-2.4ubuntu0.15.10.1) wily-security; urgency=medium

  * SECURITY UPDATE: Denial of service or possible code execution via crafted
    ICC color profile (LP: #1547865)
    - debian/patches/09-CVE-2016-1577.patch: Prevent double-free in
      src/libjasper/base/jas_icc.c
    - CVE-2016-1577
  * SECURITY UPDATE: Denial of service via resource exhaustion via crafted ICC
    color profile
    - debian/patches/10-CVE-2016-2116.patch: Prevent memory leak in
      src/libjasper/base/jas_icc.c
    - CVE-2016-2116

Date: 2016-02-26 18:20:16.277031+00:00
Changed-By: Tyler Hicks <[email protected]>
Signed-By: Ubuntu Archive Robot 
<[email protected]>
https://launchpad.net/ubuntu/+source/jasper/1.900.1-debian1-2.4ubuntu0.15.10.1

Sorry, changesfile not available.
-- 
Wily-changes mailing list
[email protected]
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/wily-changes

Reply via email to