Univention Bugzilla – Bug 54610
jbig2dec: Multiple issues (5.0)
Last modified: 2022-03-30 12:41:44 CEST
New Debian jbig2dec 0.16-1+deb10u1 fixes: This update addresses the following issue: * heap-based buffer overflow in jbig2_image_compose in jbig2_image.c (CVE-2020-12268)
--- mirror/ftp/pool/main/j/jbig2dec/jbig2dec_0.16-1.dsc +++ apt/ucs_5.0-0-errata5.0-1/source/jbig2dec_0.16-1+deb10u1.dsc @@ -1,3 +1,10 @@ +0.16-1+deb10u1 [Sun, 24 Oct 2021 19:03:02 +0200] Thorsten Alteholz <debian@alteholz.de>: + + * Team upload (printing and LTS) + * CVE-2020-12268 + avoid overflow with extreme values of x,y,w,h in function + jbig2_image_compose() + 0.16-1 [Sun, 07 Apr 2019 17:52:08 +0200] Jonas Smedegaard <dr@jones.dk>: [ upstream ] <http://piuparts.knut.univention.de/5.0-1/#6190040974384305655>
OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-1] f9b22fb15d Bug #54610: jbig2dec 0.16-1+deb10u1 doc/errata/staging/jbig2dec.yaml | 13 +++++++++++++ 1 file changed, 13 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x268>