Oval Definition:	oval:org.cisecurity:def:162
Revision Date: 2016-02-08 Version: 2 Title: DSA-3138-1 jasper -- security update Description: An off-by-one flaw, leading to a heap-based buffer overflow (CVE-2014-8157), and an unrestricted stack memory use flaw (CVE-2014-8158) were found in JasPer, a library for manipulating JPEG-2000 files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2014-8157 CVE-2014-8158 DSA-3138-1 Platform(s): Debian GNU/kFreeBSD 7.0 Debian GNU/Linux 7.0 Product(s): jasper Definition Synopsis Debian 7 is installed AND GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed OR Debian GNU/kFreeBSD is installed AND jasper is earlier than 0:1.900.1-13+deb7u3
BACK