projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 09a71e6) | patch
package/jasper: security bump version to 2.0.25
authorMichael Vetter <jubalh@iodoru.org>
Mon, 15 Feb 2021 10:45:28 +0000 (11:45 +0100)
committerPeter Korsgaard <peter@korsgaard.com>
Mon, 15 Feb 2021 21:34:43 +0000 (22:34 +0100)
commit72b801010c867b2a222603e3951a012e57a6f2c8
tree05c155b8962f2bd8bb788430c82fbebf88fdde55tree
parent09a71e6a756360f2cd96938af9c719391adfb950commit | diff
package/jasper: security bump version to 2.0.25

Changes:

* Fix memory-related bugs in the JPEG-2000 codec resulting from
  attempting to decode invalid code streams. (#264, #265)
  This fix is associated with CVE-2021-26926 and CVE-2021-26927.
* Fix wrong return value under some compilers (#260)
* Fix CVE-2021-3272 heap buffer overflow in jp2_decode (#259)

Signed-off-by: Michael Vetter <jubalh@iodoru.org>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/jasper/jasper.hash diff | blob | history
package/jasper/jasper.mk diff | blob | history