USN-3706-1: libjpeg-turbo vulnerabilities

Severity

Low

Vendor

Canonical Ubuntu

Versions Affected

• Canonical Ubuntu 14.04

Description

Affected Cloud Foundry Products and Versions

Severity is low unless otherwise noted.

• All versions of Cloud Foundry cflinuxfs2 prior to 1.224.0

Mitigation

OSS users are strongly encouraged to follow one of the mitigations below:

• The Cloud Foundry project recommends that Cloud Foundry deployments run with cflinuxfs2 version 1.224.0 or later.

References

• USN-3706-1
• CVE-2014-9092
• CVE-2016-3616
• CVE-2017-15232
• CVE-2018-11212
• CVE-2018-11213
• CVE-2018-11214
• CVE-2018-1152