CVE-2016-8693 log

Source
Severity Medium
Remote Yes
Type Denial of service
Description
A double free vulnerability was found in mem_close in jas_stream.c triggered by invoking imginfo command on specially crafted image file.
Group Package Affected Fixed Severity Status Ticket
AVG-14 jasper 1.900.1-15 1.900.31-1 Critical Fixed
Date Advisory Group Package Severity Description
07 Dec 2016 ASA-201612-9 AVG-14 jasper Critical multiple issues
References
http://www.openwall.com/lists/oss-security/2016/10/16/14
https://github.com/mdadams/jasper/commit/44a524e367597af58d6265ae2014468b334d0309