Launchpad.net

CVE 2016-8654

A heap-buffer overflow vulnerability was found in QMFB code in JPC codec caused by buffer being allocated with too small size. jasper versions before 2.0.0 are affected.

See the CVE page on Mitre.org for more details.