Oval Definition:oval:org.mitre.oval:def:28420
Revision Date:2015-02-23Version:9
Title:ELSA-2014-2021 -- jasper security update (important)
Description:[1.900.1-16.2]- CVE-2014-8137 - double-free in in jas_iccattrval_destroy (#1173566)- CVE-2014-8138 - heap overflow in jp2_decode (#1173566)[1.900.1-16.1]- CVE-2014-9029 - incorrect component number check in COC, RGN and QCC marker segment decoders (#1171208)[1.900.1-16]- CERT VU#887409: heap buffer overflow flaws lead to arbitrary code execution (#749150)
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2014-8137
CVE-2014-8138
CVE-2014-9029
ELSA-2014-2021
Platform(s):Oracle Linux 6
Oracle Linux 7
Product(s):jasper
Definition Synopsis
  • Oracle Linux 6 release section
  • Oracle Linux 6.x
  • AND Packages match section
  • jasper is earlier than 0:1.900.1-16.el6_6.2
  • OR jasper-devel is earlier than 0:1.900.1-16.el6_6.2
  • OR jasper-libs is earlier than 0:1.900.1-16.el6_6.2
  • OR jasper-utils is earlier than 0:1.900.1-16.el6_6.2
  • Oracle Linux 7 release section
  • Oracle Linux 7.x
  • AND Packages match section
  • jasper is earlier than 0:1.900.1-26.el7_0.2
  • OR jasper-devel is earlier than 0:1.900.1-26.el7_0.2
  • OR jasper-libs is earlier than 0:1.900.1-26.el7_0.2
  • OR jasper-utils is earlier than 0:1.900.1-26.el7_0.2
    • BACK