TEMP-0000000-D1720F

NameTEMP-0000000-D1720F
Descriptionjasper: heap-based buffer overflow in jpc_dec_decodepkt (jpc_t2dec.c)
SourceAutomatically generated temporary name. Not for external reference.

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
jasper (PTS)wheezy1.900.1-13+deb7u4vulnerable
wheezy (security)1.900.1-13+deb7u5vulnerable
jessie1.900.1-debian1-2.4+deb8u1vulnerable
jessie (security)1.900.1-debian1-2.4+deb8u2vulnerable

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
jaspersource(unstable)(unfixed)

Notes

Upstream bug: https://github.com/mdadams/jasper/issues/114
CVE Request: http://www.openwall.com/lists/oss-security/2017/01/25/10

Search for package or bug name: Reporting problems