[Secure-testing-team] Bug#816625: jasper: CVE-2016-1577: double free vulnerability in the jas_iccattrval_destroy function
Salvatore Bonaccorso
carnil at debian.org
Thu Mar 3 15:10:03 UTC 2016
Source: jasper
Version: 1.900.1-7
Severity: grave
Tags: security upstream
Hi,
the following vulnerability was published for jasper.
CVE-2016-1577[0]:
double free vulnerability in the jas_iccattrval_destroy function
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2016-1577
Regards,
Salvatore
More information about the Secure-testing-team
mailing list