projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9c96d79) | patch
jasper: add upstream security fix for CVE-2017-6850
authorPeter Korsgaard <peter@korsgaard.com>
Tue, 14 Mar 2017 22:58:21 +0000 (23:58 +0100)
committerPeter Korsgaard <peter@korsgaard.com>
Wed, 15 Mar 2017 12:37:42 +0000 (13:37 +0100)
commita105443b24f7c75b10dab44c2916fc9f2b58363a
tree1746c1098c9ad884118076a8e5820f6a79890bd7tree
parent9c96d7991ca39767c84472fb8875b236d89fb3e4commit | diff
jasper: add upstream security fix for CVE-2017-6850

Fixes a NULL pointer dereference in jp2_cdef_destroy:

https://blogs.gentoo.org/ago/2017/01/25/jasper-null-pointer-dereference-in-jp2_cdef_destroy-jp2_cod-c/

https://github.com/mdadams/jasper/issues/112

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/jasper/0002-Fixed-bugs-due-to-uninitialized-data-in-the-JP2-deco.patch [new file with mode: 0644] blob