Ubuntu
libjpeg-turbo package

  1. Bug #1252912
  2. Comment #1

Comment 1 for bug 1252912

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package libjpeg-turbo - 1.3.0-0ubuntu1.1

---------------
libjpeg-turbo (1.3.0-0ubuntu1.1) saucy-security; urgency=low

  * SECURITY UPDATE: information disclosure via uninitialized memory in
    the get_sos function (LP: #1252912)
    - debian/patches/CVE-2013-6629.patch: check for duplications in
      jdmarker.c.
    - CVE-2013-6629
  * SECURITY UPDATE: information disclosure via uninitialized memory in
    the get_dht function (LP: #1252912)
    - debian/patches/CVE-2013-6630.patch: properly clear out memory in
      jdmarker.c.
    - CVE-2013-6630
 -- Marc Deslauriers <email address hidden> Fri, 22 Nov 2013 09:57:17 -0500