Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-25160

jasper is missing patch for CVE-2021-27845

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Minor Minor
    • None
    • rhel-8.9.0
    • jasper
    • None
    • sst_cs_system_management
    • ssg_core_services
    • 2
    • Dev ack
    • False
    • Hide

      None

      Show
      None
    • Unspecified

      What were you trying to do that didn't work?

      jasper as included in RHEL 8.9 doesn't contain the patch for CVE-2021-27845.

      Please provide the package NVR for which bug is seen: jasper-2.0.14-5.el8

      How reproducible:

      The patch for the issue is here:
      https://github.com/jasper-software/jasper/commit/fd564ee3377d9fc2484c657e4f464a3fb9764d31

       

      the upstream issue:
      https://github.com/jasper-software/jasper/issues/194

      Steps to reproduce

      1.  
      2.  
      3.  

      Expected results

      Actual results

            jridky Josef Řídký
            waschk Götz Waschk
            Josef Řídký Josef Řídký
            Vera Cholasta Vera Cholasta
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated: