Advisories ยป MGASA-2014-0514

Updated jasper packages fix CVE-2014-9029

Publication date: 05 Dec 2014
Type: security
Affected Mageia releases : 4
CVE: CVE-2014-9029

Description

Updated jasper packages fix security vulnerability:

Josh Duart of the Google Security Team discovered heap-based buffer overflow
flaws in JasPer, which could lead to denial of service (application crash) or
the execution of arbitrary code (CVE-2014-9029).
                

References

SRPMS

4/core