MDVSA-2009:142-1 -- Mandriva jasperID: oval:org.secpod.oval:def:300486 | Date: (C)2012-01-07 (M)2023-12-26 |
Class: PATCH | Family: unix |
Multiple security vulnerabilities has been identified and fixed in jasper: The jpc_qcx_getcompparms function in jpc/jpc_cs.c for the JasPer JPEG-2000 library before 1.900 allows remote user-assisted attackers to cause a denial of service and possibly corrupt the heap via malformed image files, as originally demonstrated using imagemagick convert . Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation . The jas_stream_tmpfile function in libjasper/base/jas_stream.c in JasPer 1.900.1 allows local users to overwrite arbitrary files via a symlink attack on a tmp.XXXXXXXXXX temporary file . Buffer overflow in the jas_stream_printf function in libjasper/base/jas_stream.c in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via vectors related to the mif_hdr_put function and use of vsprintf . The updated packages have been patched to prevent this. Update: Packages for 2008.0 are being provided due to extended support for Corporate products.
Platform: |
Mandriva Linux 2008.0 |