jasper 1.900.1-3ubuntu0.7.10.1 source package in Ubuntu
Changelog
jasper (1.900.1-3ubuntu0.7.10.1) gutsy-security; urgency=low
* SECURITY UPDATE: integer overflows via integer multiplication for
memory allocation
- src/libjasper/include/jasper/jas_malloc.h,
src/libjasper/base/jas_malloc.c:
* introduce new size-checked allocation functions
- src/libjasper/base/jas_*.c,
src/libjasper/bmp/bmp_dec.c,
src/libjasper/jp2/jp2_*.c,
src/libjasper/jpc/jpc_*.c,
src/libjasper/mif/mif_cod.c:
* use new size-checked allocation functions
- CVE-2008-3520
* SECURITY UPDATE: denial of service via temporary file name prediction
- src/libjasper/base/jas_stream.c: use mkstemp()
- CVE-2008-3521
* SECURITY UPDATE: buffer overflow via vsprintf in jas_stream_printf()
- src/libjasper/base/jas_stream.c: use vsnprintf()
- CVE-2008-3522
-- Marc Deslauriers <email address hidden> Wed, 18 Mar 2009 13:22:57 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Gutsy
- Original maintainer:
- Ubuntu Development Team
- Architectures:
- any
- Section:
- graphics
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| jasper_1.900.1.orig.tar.gz | 1.1 MiB | 6cf104e2811f6088ca1dc76d87dd27c55178d3ccced20db8858d28ae22911a94 |
| jasper_1.900.1-3ubuntu0.7.10.1.diff.gz | 48.6 KiB | ed48ddf32c825ed932f15d90ea7afd7ecd4bfce9c93cca6c9671a16cc84e79bd |
| jasper_1.900.1-3ubuntu0.7.10.1.dsc | 787 bytes | 68db4d3dd6fa0bae8834f5a5870d1cdf49f2d9b1684c6a1826750a9a44e746a5 |
Available diffs
Binary packages built by this source
- libjasper-dev: No summary available for libjasper-dev in ubuntu gutsy.
No description available for libjasper-dev in ubuntu gutsy.
- libjasper-runtime: No summary available for libjasper-runtime in ubuntu gutsy.
No description available for libjasper-runtime in ubuntu gutsy.
- libjasper1: No summary available for libjasper1 in ubuntu gutsy.
No description available for libjasper1 in ubuntu gutsy.
