Debian 10264 Published by

A jasper security update has been released for Debian GNU/Linux 8 Extended LTS to address a divide-by-zero vulnerability.



ELA-461-1 jasper security update

Package jasper
Version 1.900.1-debian1-2.4+deb8u11
Related CVEs CVE-2021-27845

An issue has been found in jasper, a JPEG-2000 runtime library. A Divide-by-zero vulnerability exists in JasPer Image Coding Toolkit 2.0 in jasper/src/libjasper/jpc/jpc_enc.c

For Debian 8 jessie, these problems have been fixed in version 1.900.1-debian1-2.4+deb8u11.

We recommend that you upgrade your jasper packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/

  ELA-461-1 jasper security update