Integer overflow in libjasper/jpc/jpc_dec.c in JasPer 1.900.17 allows remote malicious users to cause a denial of service (crash) via a crafted file.
jasper project jasper 1.900.17