-
Bug
-
Resolution: Unresolved
-
Minor
-
None
-
rhel-8.9.0
-
None
-
sst_cs_system_management
-
ssg_core_services
-
2
-
Dev ack
-
False
-
-
Unspecified
What were you trying to do that didn't work?
jasper as included in RHEL 8.9 doesn't contain the patch for CVE-2021-27845.
Please provide the package NVR for which bug is seen: jasper-2.0.14-5.el8
How reproducible:
The patch for the issue is here:
https://github.com/jasper-software/jasper/commit/fd564ee3377d9fc2484c657e4f464a3fb9764d31
the upstream issue:
https://github.com/jasper-software/jasper/issues/194