| View previous topic :: View next topic |
| Author |
Message |
GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Fri Aug 09, 2019 9:26 pm Post subject: [ GLSA 201908-03 ] JasPer |
 |
|
Gentoo Linux Security Advisory
Title: JasPer: Multiple vulnerabilities (GLSA 201908-03)
Severity: normal
Exploitable: remote
Date: 2019-08-09
Bug(s): #614028, #614032, #624988, #629286, #635552, #662160, #674154, #674214
ID: 201908-03
Synopsis
Multiple vulnerabilities have been found in JasPer, the worst of
which could result in a Denial of Service condition.
Background
JasPer is a software-based implementation of the codec specified in the
JPEG-2000 Part-1 standard.
Affected Packages
Package: media-libs/jasper
Vulnerable: <= 2.0.16
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in JasPer. Please review
the CVE identifiers referenced below for details.
Impact
Please review the referenced CVE identifiers for details.
Workaround
There is no known workaround at this time.
Resolution
JasPer is no longer maintained upstream and contains many
vulnerabilities which remain unaddressed. Gentoo users are advised to
unmerge this package.
| Code: | # emerge --unmerge media-libs/jasper
|
References
CVE-2017-1000050
CVE-2017-13745
CVE-2017-13746
CVE-2017-13747
CVE-2017-13748
CVE-2017-13749
CVE-2017-13750
CVE-2017-13751
CVE-2017-13752
CVE-2017-13753
CVE-2017-14132
CVE-2017-14229
CVE-2017-5503
CVE-2017-5504
CVE-2017-5505
CVE-2017-6851
CVE-2017-6852
CVE-2017-9782
CVE-2018-18873
CVE-2018-20584
CVE-2018-9055
CVE-2018-9154
Last edited by GLSA on Thu Aug 29, 2019 4:16 am; edited 2 times in total |
|
| Back to top |
|
 |
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
News & Announcements
