Overview

File _patchinfo of Package patchinfo.18193

<patchinfo incident="18193">
  <issue tracker="bnc" id="1181483">VUL-1: CVE-2021-3272: jasper: heap-based buffer over-read in jp2_decode in jp2/jp2_dec.c</issue>
  <issue tracker="bnc" id="1179748">VUL-0: CVE-2020-27828: jasper: Heap-buffer-overflow in libjasper/jpc/jpc_enc.c:629</issue>
  <issue tracker="cve" id="2021-3272"/>
  <issue tracker="cve" id="2020-27828"/>
  <packager>mvetter</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for jasper</summary>
  <description>This update for jasper fixes the following issues:

- bsc#1179748 CVE-2020-27828: Fix heap overflow by checking maxrlvls
- bsc#1181483 CVE-2021-3272: Fix buffer over-read in jp2_decode
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places