Subject: CVS commit: pkgsrc/emulators/suse131_gtk2
From: OBATA Akio
Date: 2015-01-15 10:37:05
Message id: 20150115093705.AC0DA98@cvs.netbsd.org
Log Message:
   openSUSE Security Update: Security update for jasper
______________________________________________________________________________

Announcement ID:    openSUSE-SU-2015:0042-1
Rating:             moderate
References:         #909474 #909475
Cross-References:   CVE-2014-8137
Affected Products:
                    openSUSE 13.1
______________________________________________________________________________

   An update that solves one vulnerability and has one errata
   is now available.

Description:

         The follow issues were fixed with this update:
         - CVE-2014-8137  double-free in jas_iccattrval_destroy()(bnc#909474)
         - CVE-2014-8138  heap overflow in jas_decode() (bnc#909475)

References:

   http://support.novell.com/security/cve/CVE-2014-8137.html
   https://bugzilla.suse.com/show_bug.cgi?id=909474
   https://bugzilla.suse.com/show_bug.cgi?id=909475
Files:
RevisionActionfile
1.7modifypkgsrc/emulators/suse131_gtk2/Makefile
1.5modifypkgsrc/emulators/suse131_gtk2/distinfo