AVG-88 log
| Package | jasper |
| Status | Fixed |
| Severity | High |
| Type | multiple issues |
| Affected | 1.900.1-14 |
| Fixed | 1.900.1-15 |
| Current | 4.2.4-2 [extra] |
| Ticket | FS#48511 |
| Created | Mon Nov 28 00:08:26 2016 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2016-2116 | Medium | Yes | Denial of service | Memory leak in the jas_iccprof_createfrombuf function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (memory... |
| CVE-2016-1577 | High | Yes | Arbitrary code execution | Double free vulnerability in the jas_iccattrval_destroy function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash)... |