Fedora 24: jasper Security Update 2017-c1bec8972c
Summary
This package contains an implementation of the image compression
standard JPEG-2000, Part 1. It consists of tools for conversion to and
from the JP2 and JPC formats.
Update Information:
Security fix for CVE-2016-8654 Security fix for CVE-2016-9262
Change Log
References
[ 1 ] Bug #1393882 - CVE-2016-9262 jasper: Multiple overflow vulnerabilities leading to use after free https://bugzilla.redhat.com/show_bug.cgi?id=1393882 [ 2 ] Bug #1399167 - CVE-2016-8654 jasper: Heap-based buffer overflow in QMFB code in JPC codec https://bugzilla.redhat.com/show_bug.cgi?id=1399167
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade jasper' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html