Arbuszo

**Name of the Vulnerable Software and Affected Versions** Jasper version 4.2.2 **Description** The issue is related to an assertion failure vulnerability in the `jpc streamlist remove` function, which can be exploited by attackers to cause a denial of service attack through a specific image file. This vulnerability is associated with incorrect cleanup or release of resources. **Recommendations** For Jasper version 4.2.2, consider disabling the `jpc streamlist remove` function as a temporary workaround until a patch is available. Restrict access to the `jpc dec.c` module to minimize the risk of exploitation. Avoid using the vulnerable function with specially crafted image files until the issue is resolved.