File _patchinfo of Package patchinfo.18193
<patchinfo incident="18193">
<issue tracker="bnc" id="1181483">VUL-1: CVE-2021-3272: jasper: heap-based buffer over-read in jp2_decode in jp2/jp2_dec.c</issue>
<issue tracker="bnc" id="1179748">VUL-0: CVE-2020-27828: jasper: Heap-buffer-overflow in libjasper/jpc/jpc_enc.c:629</issue>
<issue tracker="cve" id="2021-3272"/>
<issue tracker="cve" id="2020-27828"/>
<packager>mvetter</packager>
<rating>important</rating>
<category>security</category>
<summary>Security update for jasper</summary>
<description>This update for jasper fixes the following issues:
- bsc#1179748 CVE-2020-27828: Fix heap overflow by checking maxrlvls
- bsc#1181483 CVE-2021-3272: Fix buffer over-read in jp2_decode
</description>
</patchinfo>