CVE-2013-6629, CVE-2013-6630

Bug #1252912 reported by Red Ink on 2013-11-20
256
This bug affects 1 person
Affects Status Importance Assigned to Milestone
libjpeg-turbo (Ubuntu)
Undecided
Unassigned
information type: Private Security → Public Security
Changed in libjpeg-turbo (Ubuntu):
status: New → Confirmed
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package libjpeg-turbo - 1.3.0-0ubuntu1.1

---------------
libjpeg-turbo (1.3.0-0ubuntu1.1) saucy-security; urgency=low

  * SECURITY UPDATE: information disclosure via uninitialized memory in
    the get_sos function (LP: #1252912)
    - debian/patches/CVE-2013-6629.patch: check for duplications in
      jdmarker.c.
    - CVE-2013-6629
  * SECURITY UPDATE: information disclosure via uninitialized memory in
    the get_dht function (LP: #1252912)
    - debian/patches/CVE-2013-6630.patch: properly clear out memory in
      jdmarker.c.
    - CVE-2013-6630
 -- Marc Deslauriers <email address hidden> Fri, 22 Nov 2013 09:57:17 -0500

Changed in libjpeg-turbo (Ubuntu):
status: Confirmed → Fix Released
To post a comment you must log in.
This report contains Public Security information  Edit
Everyone can see this security related information.

Other bug subscribers