* SECURITY UPDATE: Denial of service or possible code execution via crafted
ICC color profile (LP: #1547865)
- debian/patches/09-CVE-2016-1577.patch: Prevent double-free in
src/libjasper/base/jas_icc.c
- CVE-2016-1577
* SECURITY UPDATE: Denial of service via resource exhaustion via crafted ICC
color profile
- debian/patches/10-CVE-2016-2116.patch: Prevent memory leak in
src/libjasper/base/jas_icc.c
- CVE-2016-2116
This bug was fixed in the package jasper - 1.900.1-13ubuntu0.3
--------------- 1-13ubuntu0. 3) precise-security; urgency=medium
jasper (1.900.
* SECURITY UPDATE: Denial of service or possible code execution via crafted patches/ 09-CVE- 2016-1577. patch: Prevent double-free in libjasper/ base/jas_ icc.c patches/ 10-CVE- 2016-2116. patch: Prevent memory leak in libjasper/ base/jas_ icc.c
ICC color profile (LP: #1547865)
- debian/
src/
- CVE-2016-1577
* SECURITY UPDATE: Denial of service via resource exhaustion via crafted ICC
color profile
- debian/
src/
- CVE-2016-2116
-- Tyler Hicks <email address hidden> Fri, 26 Feb 2016 00:07:11 -0600