Advisories ยป MGASA-2019-0381

Updated jasper packages fix security vulnerabilities

Publication date: 13 Dec 2019
Type: security
Affected Mageia releases : 7
CVE: CVE-2018-19540 , CVE-2018-19541

Description

Heap based overflow in jas_icctxtdesc_input (CVE-2018-19540).

Heap based overread in jas_image_depalettize (CVE-2018-19541).
                

References

SRPMS

7/core