CVE-2016-2116

Memory leak in the jas_iccprof_createfrombuf function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (memory consumption) via a crafted ICC color profile in a JPEG 2000 image file.

Date published : 2016-04-13

http://www.securityfocus.com/bid/84133

https://bugs.launchpad.net/ubuntu/+source/jasper/+bug/1547865