Bug 37209

Summary: jasper: Buffer overflows (3.2)
Product: UCS Reporter: Moritz Muehlenhoff <jmm>
Component: Security updatesAssignee: Arvid Requate <requate>
Status: CLOSED FIXED QA Contact: Stefan Gohmann <gohmann>
Severity: normal    
Priority: P3 CC: gohmann, requate, walkenhorst
Version: UCS 3.0Flags: requate: Patch_Available+
Target Milestone: UCS 3.2-6-errata   
Hardware: Other   
OS: Linux   
What kind of report is it?: --- What type of bug is this?: ---
Who will be affected by this bug?: --- How will those affected feel about the bug?: ---
User Pain: Enterprise Customer affected?:
School Customer affected?: ISV affected?:
Waiting Support: Flags outvoted (downgraded) after PO Review:
Ticket number: Bug group (optional): Security
Max CVSS v3 score:

Description Moritz Muehlenhoff univentionstaff 2014-12-05 15:25:28 CET 
Two buffer overflows in the processing of JPEG-2000 images may result in the execution of arbitrary code (CVE-2014-9029)
Comment 1 Moritz Muehlenhoff univentionstaff 2014-12-19 15:05:38 CET 
Buffer overflow and double free in processing JPEG2000 images (CVE-2014-8137, CVE-2014-8138)
Comment 2 Moritz Muehlenhoff univentionstaff 2015-02-02 09:17:54 CET 
Off-by-one and buffer overflows in processing JPEG2000 images (CVE-2014-8157, CVE-2014-8158)
Comment 3 Arvid Requate univentionstaff 2015-05-07 17:50:50 CEST 
Fixed in upstream Debian package version 1.900.1-7+squeeze4
Comment 4 Arvid Requate univentionstaff 2015-08-18 17:01:42 CEST 
Advisory: 2015-08-18-jasper.yaml
Comment 5 Stefan Gohmann univentionstaff 2015-08-19 16:47:02 CEST 
YAML: OK, small fixes: r63121

Build log / Patches: OK

Inst / Update i386: OK

Inst / Update amd64: OK
Comment 6 Janek Walkenhorst univentionstaff 2015-08-21 13:13:30 CEST 
<http://errata.univention.de/ucs/3.2/357.html>