Download
| Alert*
oval:org.secpod.oval:def:89044889
This update for jasper fixes the following issues: - CVE-2016-8654: Heap-based buffer overflow in QMFB code in JPC codec. - CVE-2016-9395: Invalid jasper files could lead to abort of the library caused by attacker provided image. - CVE-2016-9398: Invalid jasper files could lead to abort of the lib ... oval:org.secpod.oval:def:89044852 This update for jasper fixes the following issues: Security issues fixed: - CVE-2016-8654: Heap-based buffer overflow in QMFB code in JPC codec - CVE-2016-9395: Missing sanity checks on the data in a SIZ marker segment . - CVE-2016-9398: jpc_math.c:94: int jpc_floorlog2: Assertion "x 0" failed. - ... |