An issue was discovered in JasPer 2.0.14. There is a NULL pointer dereference in the function jp2_decode in libjasper/jp2/jp2_dec.c, leading to a denial of service.Referenceshttps://lists.debian.org/debian-lts-announce/2019/01/msg00003.htmlhttps://github.com/mdadams/jasper/issues/182http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00004.htmlhttps://www.oracle.com/security-alerts/cpuapr2020.html
