main/jasper: security fixes (CVE-2016-1577, CVE-2016-2089, CVE-2016-2116)

author: Leonardo Arena <rnalrd@alpinelinux.org> 2016-03-11 15:10:06 +0000
committer: Leonardo Arena <rnalrd@alpinelinux.org> 2016-03-11 15:10:06 +0000
commit: 244e4d797e740c7fedf8e3e9df9d9d85859b11b4 (patch)
tree: ba40e63c7766138eaa7a69732a1e53f0245ce86d /main/jasper/CVE-2016-1577.patch
parent: ef66a83f94e9a7f83c00f3487a85387c576a8d52 (diff)
download: aports-244e4d797e740c7fedf8e3e9df9d9d85859b11b4.tar.bz2
aports-244e4d797e740c7fedf8e3e9df9d9d85859b11b4.tar.xz
1 files changed, 14 insertions, 0 deletions
diff --git a/main/jasper/CVE-2016-1577.patch b/main/jasper/CVE-2016-1577.patch
new file mode 100644
index 0000000000..41ebfc53e0
--- /dev/null
+++ b/main/jasper/CVE-2016-1577.patch
@@ -0,0 +1,14 @@
+Description: CVE-2016-1577: Prevent double-free in jas_iccattrval_destroy()
+Author: Tyler Hicks <tyhicks () canonical com>
+Bug-Ubuntu: https://launchpad.net/bugs/1547865
+
+--- jasper-1.900.1-debian1.orig/src/libjasper/base/jas_icc.c
++++ jasper-1.900.1-debian1/src/libjasper/base/jas_icc.c
+@@ -300,6 +300,7 @@ jas_iccprof_t *jas_iccprof_load(jas_stre
+ 				if (jas_iccprof_setattr(prof, tagtabent->tag, attrval))
+ 					goto error;
+ 				jas_iccattrval_destroy(attrval);
++				attrval = 0;
+ 			} else {
+ #if 0
+ 				jas_eprintf("warning: skipping unknown tag type\n");
author	Leonardo Arena <rnalrd@alpinelinux.org>	2016-03-11 15:10:06 +0000
committer	Leonardo Arena <rnalrd@alpinelinux.org>	2016-03-11 15:10:06 +0000
commit	244e4d797e740c7fedf8e3e9df9d9d85859b11b4 (patch)
tree	ba40e63c7766138eaa7a69732a1e53f0245ce86d /main/jasper/CVE-2016-1577.patch
parent	ef66a83f94e9a7f83c00f3487a85387c576a8d52 (diff)
download	aports-244e4d797e740c7fedf8e3e9df9d9d85859b11b4.tar.bz2 aports-244e4d797e740c7fedf8e3e9df9d9d85859b11b4.tar.xz