Gnu · Jasper · CVE-2016-8654
**Name of the Vulnerable Software and Affected Versions**
jasper versions prior to 2.0.0
**Description**
A heap-buffer overflow issue was discovered in the QMFB code of the JPC codec. This is caused by the buffer being allocated with a size that is too small.
**Recommendations**
For versions prior to 2.0.0, update to version 2.0.0 or later to resolve the issue.