SUSE Enterprise: 2011:1317-2 Important: Jasper Heap Overflow

suse

December 14, 2011

An update that fixes two vulnerabilities is now available

Summary

Warning: Undefined array key "advisoryid" in /var/www/www.linuxsecurity.com-443/html/tmp/regularlabs/custom_php/3860113_1edcd913e2b52798c5b9126b8927230e on line 19

   SUSE Security Update: Security update for jasper
______________________________________________________________________________

Announcement ID:    SUSE-SU-2011:1317-2
Rating:             important
References:         #725758 
Cross-References:   CVE-2011-4516 CVE-2011-4517
Affected Products:
                    SUSE Linux Enterprise Server 10 SP4
                    SUSE Linux Enterprise Desktop 10 SP4
                    SLE SDK 10 SP4
______________________________________________________________________________

   An update that fixes two vulnerabilities is now available.

Description:


   The following bug has been fixed:

   * Specially crafted JPEG2000 files could have caused a
   heap buffer overflow in jasper (CVE-2011-4516,
   CVE-2011-4517)

   Security Issues:

   * CVE-2011-4516
   
   * CVE-2011-4517
   



Package List:

   - SUSE Linux Enterprise Server 10 SP4 (i586 ia64 ppc s390x x86_64):

      jasper-1.701.0-16.15.1
      libjasper-1.701.0-16.15.1

   - SUSE Linux Enterprise Server 10 SP4 (s390x x86_64):

      libjasper-32bit-1.701.0-16.15.1

   - SUSE Linux Enterprise Server 10 SP4 (ia64):

      libjasper-x86-1.701.0-16.15.1

   - SUSE Linux Enterprise Server 10 SP4 (ppc):

      libjasper-64bit-1.701.0-16.15.1

   - SUSE Linux Enterprise Desktop 10 SP4 (i586 x86_64):

      libjasper-1.701.0-16.15.1

   - SUSE Linux Enterprise Desktop 10 SP4 (x86_64):

      libjasper-32bit-1.701.0-16.15.1

   - SLE SDK 10 SP4 (i586 ia64 ppc s390x x86_64):

      jasper-1.701.0-16.15.1


References:

   https://www.suse.com/security/cve/CVE-2011-4516.html
   https://www.suse.com/security/cve/CVE-2011-4517.html
   https://login.microfocus.com/nidp/app/login?sid=0
   https://login.microfocus.com/nidp/app/login?sid=0

Topics Covered

security advisory security issue important heap overflow SUSE jasper

References

Severity

important

Lowest

Low

Medium

High

Critical

Warning: Undefined array key "block1" in /var/www/www.linuxsecurity.com-443/html/tmp/regularlabs/custom_php/3860113_c1d2d4f425d79c8c327f2b8603847ec6 on line 11

Topics Covered

security advisory security issue important heap overflow SUSE jasper

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE Enterprise: 2011:1317-2 Important: Jasper Heap Overflow

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE Enterprise: 2011:1317-2 Important: Jasper Heap Overflow

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!