libjasper.so is affected by a use-after-free (UAF) vulnerability. This is due to the way tvp
and tvp->buf
are freed in the mif_process_cmpt
function in libjasper/mif/mif_cod.c
which would allow remote attackers to cause a denial of service using a crafted JPEG 2000 image file.