Ubuntu
jasper package

jasper 1.701.0-2ubuntu0.6.06.1 source package in Ubuntu

Changelog

jasper (1.701.0-2ubuntu0.6.06.1) dapper-security; urgency=low

  * SECURITY UPDATE: integer overflows via integer multiplication for
    memory allocation
    - src/libjasper/include/jasper/jas_malloc.h,
      src/libjasper/base/jas_malloc.c:
      * introduce new size-checked allocation functions
    - src/libjasper/base/jas_*.c,
      src/libjasper/bmp/bmp_dec.c,
      src/libjasper/jp2/jp2_*.c,
      src/libjasper/jpc/jpc_*.c,
      src/libjasper/mif/mif_cod.c:
      * use new size-checked allocation functions
    - CVE-2008-3520
  * SECURITY UPDATE: denial of service via temporary file name prediction
    - src/libjasper/base/jas_stream.c: use mkstemp()
    - CVE-2008-3521
  * SECURITY UPDATE: buffer overflow via vsprintf in jas_stream_printf()
    - src/libjasper/base/jas_stream.c: use vsnprintf()
    - CVE-2008-3522
  * debian/control: Specify a Section: for the source package

 -- Marc Deslauriers <email address hidden>   Wed, 18 Mar 2009 14:36:50 -0400

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Dapper
Original maintainer:
Roland Stigge
Architectures:
any
Section:
graphics
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
jasper_1.701.0.orig.tar.gz 1.0 MiB fa626058746fd22bb46bda477c47635bac2c5f4f4563b1bfe7870035e4d3ba05
jasper_1.701.0-2ubuntu0.6.06.1.diff.gz 33.7 KiB e866a0155680c758eefb21263203195945c2cf806a57de66cba2dc282aacf554
jasper_1.701.0-2ubuntu0.6.06.1.dsc 715 bytes 6e914977b133e5a25a907499e9a6d3d1d3b71d46f15d6308e84cf8ac3266533e

View changes file

Binary packages built by this source

libjasper-1.701-1: No summary available for libjasper-1.701-1 in ubuntu dapper.

No description available for libjasper-1.701-1 in ubuntu dapper.

libjasper-1.701-dev: No summary available for libjasper-1.701-dev in ubuntu dapper.

No description available for libjasper-1.701-dev in ubuntu dapper.

libjasper-runtime: No summary available for libjasper-runtime in ubuntu dapper.

No description available for libjasper-runtime in ubuntu dapper.