SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for jasper-libs-2.0.14-7.fc29.x86_64.rpm :

* Thu Jul 19 2018 Rex Dieter - 2.0.14-7- cleanup cmake usage, move to %build- %build: explicitly disable doc generation- kill hard-coded rpath- -libs: explicit soname so bumps aren\'t a surprise- use %license, %make_build, \'make install/fast\'
* Fri Jul 13 2018 Fedora Release Engineering - 2.0.14-6- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Wed May 30 2018 Josef Ridky - 2.0.14-5- Fix CVE-2016-9396 (#1396986)
* Thu Mar 08 2018 Josef Ridky - 2.0.14-4- Fix gcc dependency
* Mon Feb 26 2018 Josef Ridky - 2.0.14-3- Clean spec file- Remove unused Group tag- Add gcc requirement- Use ldconfig scriptlet
* Wed Feb 07 2018 Fedora Release Engineering - 2.0.14-2- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Fri Sep 15 2017 rebase-helper - 2.0.14-1- New upstream release 2.0.14 (#1491888)
* Fri Aug 25 2017 Josef Ridky - 2.0.12-4- CVE-2017-1000050 jasper: NULL pointer exception in jp2_encode() (#1472888)
* Wed Aug 02 2017 Fedora Release Engineering - 2.0.12-3- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
* Wed Jul 26 2017 Fedora Release Engineering - 2.0.12-2- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Fri Mar 03 2017 Josef Ridky - 2.0.12-1- New upstream release 2.0.12 (#1428622)
* Fri Feb 10 2017 Fedora Release Engineering - 2.0.10-2- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
* Tue Jan 17 2017 Josef Ridky - 2.0.10-1- New upstream release 2.0.10 (#1403401)
* Thu Dec 01 2016 Josef Ridky - 2.0.2-1- New upstream release 2.0.2 (#1395929)- CVE-2016-9262 jasper: Multiple overflow vulnerabilities leading to use after free (#1393883)- CVE-2016-8654 jasper: Heap-based buffer overflow in QMFB code in JPC codec (#1399168)- CVE-2016-9388 jasper: Reachable assertion in RAS encoder/decoder- CVE-2016-9389 jasper: Improper equality testing of component domains via assertion- CVE-2016-9390 jasper: Assertion failure when tiles lie outside of the image area- CVE-2016-9391 jasper: reachable assertions in the JPC bitstream code- CVE-2016-9392 jasper: Missing sanity checks on the date in SIZ marker segment- CVE-2016-9393 jasper: Missing sanity checks on the date in SIZ marker segment- CVE-2016-9394 jasper: Missing sanity checks on the data in a SIZ marker segment- CVE-2016-9395 jasper: Assertion failure in jas_seq2d_create- CVE-2016-9557 jasper: Signed integer overflow in jas_image.c- CVE-2016-9560 jasper: Stack-based buffer overflow in jpc_tsfb.c- Upgrade libjasper.so.1
* to libjasper.so.4
*
* Mon Oct 24 2016 Josef Ridky - 1.900.13-1- New upstream release 1.900.13 (#1385637)- Release contains security fix for CVE-2016-8690, CVE-2016-8691, CVE-2016-8692, CVE-2016-8693 (#1385516)
* Thu Oct 13 2016 Josef Ridky - 1.900.3-1- New upstream release 1.900.3
* Tue Oct 11 2016 Josef Ridky - 1.900.2-2- CVE-2016-2089 - matrix rows_ NULL pointer dereference in jas_matrix_clip() (#1302636)
* Mon Oct 10 2016 Josef Ridky - 1.900.2-1- New upstream release 1.900.2 (#1382188)
* Thu Sep 15 2016 Dave Airlie - 1.900.1-34- patch 14 is an ABI break, this breaks gnome-software and steam- this would require a new revision of the .so to fix properly- as sizeof (int) != sizeof (size_t)
* Fri Aug 12 2016 Josef Ridky - 1.900.1-33- CVE-2015-5203 - double free in jasper_image_stop_load() (#1254244)- CVE-2015-5221 - Use-after-free and double-free flaws (#1255714)- CVE-2016-1867 - out-of-bounds read in the jpc_pi_nextcprl() function (#1298138)- CVE-2016-1577 - double free vulnerability in jas_iccattrval_destroy (#1314468)- CVE-2016-2116 - memory leak in jas_iccprof_createfrombuf causing memory consumption (#1314473)
  
ICM