Jasper buffer overflow vulnerability (CNVD-2018-11242)

JasPer is a Canadian software developer Michael Adams developed an open source implementation of the JPEG-2000 codec. A buffer overflow vulnerability exists in the 'jpctsfbgetbands2' function of the jpctsfb.c file in versions of JasPer prior to 1.900.30. A remote attacker could exploit this...

UBUNTU-CVE-2016-9560

Stack-based buffer overflow in the jpctsfbgetbands2 function in jpctsfb.c in JasPer before 1.900.30 allows remote attackers to have unspecified impact via a crafted image...