[MacPorts] #43308: jbigkit security update to version 2.1
MacPorts
noreply at macports.org
Wed Apr 9 13:31:49 PDT 2014
#43308: jbigkit security update to version 2.1
----------------------------+--------------------------------
Reporter: mschamschula@… | Owner: macports-tickets@…
Type: update | Status: new
Priority: Normal | Milestone:
Component: ports | Version: 2.2.1
Keywords: | Port: jbigkit
----------------------------+--------------------------------
I've updated jbigkit to @2.1.
{{{
The release notes for this version are as follows:
This is a security-critical bugfix release which remains API and ABI
backwards-compatible to version 2.0.
Users who decompress JBIG data from untrusted sources should upgrade.
It fixes a buffer overflow vulnerability in the jbig.c decoder
(CVE-2013-6369), a bug in the way jbig.c processes the option
DPPRIV=1 (not usually used in practice), and the ability of a specially-
crafted input file to force the jbig85.c decoder into
an endless loop.
}}}
--
Ticket URL: <https://trac.macports.org/ticket/43308>
MacPorts <http://www.macports.org/>
Ports system for OS X
More information about the macports-tickets
mailing list