stable

jasper-1.900.1-34.fc23

FEDORA-2016-bbecf64af4 created by jridky 7 years ago for Fedora 23

Fix broken ABI


Security fix for CVE-2015-5203, CVE-2015-5221, CVE-2016-1867, CVE-2016-1577 and CVE-2016-2116.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2016-bbecf64af4

This update has been submitted for testing by jridky.

7 years ago

This update has obsoleted jasper-1.900.1-33.fc23, and has inherited its bugs and notes.

7 years ago

This update has been pushed to testing.

7 years ago
User Icon filiperosset commented & provided feedback 7 years ago
karma

no regressions noted

This update has been submitted for stable by bodhi.

7 years ago
User Icon em3rson commented & provided feedback 7 years ago
karma

works for me

This update has been pushed to stable.

7 years ago

Please login to add feedback.

Metadata
Type
security
Severity
urgent
Karma
2
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-2
Stable by Karma
2
Stable by Time
disabled
Dates
submitted
7 years ago
in testing
7 years ago
in stable
7 years ago
BZ#1254242 CVE-2015-5203 jasper: double free in jasper_image_stop_load()
0
0
BZ#1254244 CVE-2015-5203 jasper: double free in jasper_image_stop_load() [fedora-all]
0
0
BZ#1255710 CVE-2015-5221 jasper: Use-after-free and double-free flaws in Jasper JPEG-2000 library
0
0
BZ#1255714 CVE-2015-5221 jasper: Use-after-free and double-free flaws in Jasper JPEG-2000 library [fedora-all]
0
0
BZ#1298135 CVE-2016-1867 jasper: out-of-bounds read in the jpc_pi_nextcprl() function
0
0
BZ#1298138 CVE-2016-1867 jasper: out-of-bounds read in the jpc_pi_nextcprl() function [fedora-all]
0
0
BZ#1314466 CVE-2016-1577 jasper: Double free vulnerability in jas_iccattrval_destroy
0
0
BZ#1314468 CVE-2016-1577 jasper: Double free vulnerability in jas_iccattrval_destroy [fedora-all]
0
0
BZ#1314472 CVE-2016-2116 jasper: Memory leak in jas_iccprof_createfrombuf causing memory consumption
0
0
BZ#1314473 CVE-2016-2116 jasper: Memory leak in jas_iccprof_createfrombuf causing memory consumption [fedora-all]
0
0

Automated Test Results