Updated jasper packages fix security vulnerability
Publication date: 29 May 2020Modification date: 28 May 2020
Type: security
Affected Mageia releases : 7
CVE: CVE-2018-9154
Description
Updated jasper packages fix security vulnerability: There is a reachable abort in the function jpc_dec_process_sot in libjasper/jpc/jpc_dec.c of JasPer 2.0.14 that will lead to a remote denial of service attack (CVE-2018-9154).
References
SRPMS
7/core
- jasper-2.0.14-4.2.mga7