CVE-2015-5203 log

Source
Severity High
Remote Yes
Type Arbitrary code execution
Description
A double free flaw was found in the way JasPer's jasper_image_stop_load() function parsed certain JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or possibly execute arbitrary code.
Group Package Affected Fixed Severity Status Ticket
AVG-14 jasper 1.900.1-15 1.900.31-1 Critical Fixed
Date Advisory Group Package Severity Description
07 Dec 2016 ASA-201612-9 AVG-14 jasper Critical multiple issues
References
http://seclists.org/oss-sec/2015/q3/366
https://bugzilla.redhat.com/show_bug.cgi?id=1254242#c3