Security update for jasper
The follow issues were fixed with this update:
- CVE-2014-8137 double-free in jas_iccattrval_destroy()(bnc#909474)
- CVE-2014-8138 heap overflow in jas_decode() (bnc#909475)
-
Submitted by
Vladimir Nadvornik (nadvornik)
Fixed bugs
bnc#909475
CVE-2014-8138: heap overflow in jas_decode()
bnc#909474
CVE-2014-8137: double-free in jas_iccattrval_destroy()
