Updated jasper packages fix security vulnerabilities
Publication date: 13 Dec 2019Type: security
Affected Mageia releases : 7
CVE: CVE-2018-19540 , CVE-2018-19541
Description
Heap based overflow in jas_icctxtdesc_input (CVE-2018-19540). Heap based overread in jas_image_depalettize (CVE-2018-19541).
References
SRPMS
7/core
- jasper-2.0.14-4.1.mga7