In reviewing the open security tickets, I ran across[0]. In reviewing the current Fedora packages is looks like the spec for mingw32-jasper is still looking at version 1.900.1[1]. I looked at the two patches[2], from what I can tell they wouldn't address the issue(s) in the BZ.
Has this BZ been addressed somewhere and I am looking in the wrong places? Or is it in fact outstanding? TIA..
[0]https://bugzilla.redhat.com/show_bug.cgi?id=765664 [1]https://apps.fedoraproject.org/packages/mingw32-jasper/sources/spec/ [2]https://apps.fedoraproject.org/packages/mingw32-jasper/sources/patches
Regards,
JT