package/jasper: security bump version to 2.0.25 (72b80101) · Commits · Arm Reference Solutions / buildroot

Commit 72b80101 authored Feb 15, 2021 by Michael Vetter Committed by Peter Korsgaard Feb 15, 2021

package/jasper: security bump version to 2.0.25



Changes:

* Fix memory-related bugs in the JPEG-2000 codec resulting from
  attempting to decode invalid code streams. (#264, #265)
  This fix is associated with CVE-2021-26926 and CVE-2021-26927.
* Fix wrong return value under some compilers (#260)
* Fix CVE-2021-3272 heap buffer overflow in jp2_decode (#259)

Signed-off-by: Michael Vetter <jubalh@iodoru.org>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>

parent 09a71e6a

Hide whitespace changes

Inline Side-by-side

Please register or to comment