CVE-2013-6629, CVE-2013-6630
Bug #1252912 reported by
Red Ink
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
libjpeg-turbo (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Related branches
information type: | Private Security → Public Security |
Changed in libjpeg-turbo (Ubuntu): | |
status: | New → Confirmed |
To post a comment you must log in.
This bug was fixed in the package libjpeg-turbo - 1.3.0-0ubuntu1.1
---------------
libjpeg-turbo (1.3.0-0ubuntu1.1) saucy-security; urgency=low
* SECURITY UPDATE: information disclosure via uninitialized memory in patches/ CVE-2013- 6629.patch: check for duplications in patches/ CVE-2013- 6630.patch: properly clear out memory in
the get_sos function (LP: #1252912)
- debian/
jdmarker.c.
- CVE-2013-6629
* SECURITY UPDATE: information disclosure via uninitialized memory in
the get_dht function (LP: #1252912)
- debian/
jdmarker.c.
- CVE-2013-6630
-- Marc Deslauriers <email address hidden> Fri, 22 Nov 2013 09:57:17 -0500