USN-3295-1: JasPer vulnerabilities
18 May 2017
Several security issues were fixed in JasPer.
- jasper - Library for manipulating JPEG-2000 files
It was discovered that JasPer incorrectly handled certain malformed
JPEG-2000 image files. If a user or automated system using JasPer were
tricked into opening a specially crafted image, an attacker could exploit
this to cause a denial of service or possibly execute code with the
privileges of the user invoking the program.