An issue was discovered in JasPer 2.0.14. There is a NULL pointer
dereference in the function jp2_decode in libjasper/jp2/jp2_dec.c, leading
to a denial of service.

leosilva

mdeslaur

same fix as CVE-2018-9782