libjpeg-turbo (1.3.0-0ubuntu2) trusty; urgency=low
* SECURITY UPDATE: information disclosure via uninitialized memory in
the get_sos function (LP: #1252912)
- debian/patches/CVE-2013-6629.patch: check for duplications in
jdmarker.c.
- CVE-2013-6629
* SECURITY UPDATE: information disclosure via uninitialized memory in
the get_dht function (LP: #1252912)
- debian/patches/CVE-2013-6630.patch: properly clear out memory in
jdmarker.c.
- CVE-2013-6630
-- Marc Deslauriers <email address hidden> Thu, 19 Dec 2013 15:07:26 -0500