{"id":"CVE-2016-10248","details":"The jpc_tsfb_synthesize function in jpc_tsfb.c in JasPer before 1.900.9 allows remote attackers to cause a denial of service (NULL pointer dereference) via vectors involving an empty sequence.","modified":"2026-04-16T06:22:42.069376950Z","published":"2017-03-15T14:59:00.167Z","references":[{"type":"WEB","url":"http://www.securityfocus.com/bid/93797"},{"type":"WEB","url":"https://usn.ubuntu.com/3693-1/"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2017:1208"},{"type":"FIX","url":"https://blogs.gentoo.org/ago/2016/10/20/jasper-null-pointer-dereference-in-jpc_tsfb_synthesize-jpc_tsfb-c/"},{"type":"FIX","url":"https://github.com/mdadams/jasper/commit/2e82fa00466ae525339754bb3ab0a0474a31d4bd"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/jasper-software/jasper","events":[{"introduced":"0"},{"fixed":"2e82fa00466ae525339754bb3ab0a0474a31d4bd"}]},{"type":"GIT","repo":"https://github.com/mdadams/jasper","events":[{"introduced":"0"},{"last_affected":"95e510c4c05ad76fbe485ec242b3ddf6e1a3141e"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"1.900.8"}]}}],"versions":["version-1.900.1","version-1.900.2","version-1.900.3","version-1.900.4","version-1.900.5","version-1.900.6","version-1.900.7","version-1.900.8"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-10248.json","vanir_signatures":[{"source":"https://github.com/jasper-software/jasper/commit/2e82fa00466ae525339754bb3ab0a0474a31d4bd","id":"CVE-2016-10248-1b38834e","signature_type":"Line","digest":{"line_hashes":["19490677935018637347362985802424641559","336585047646684351237561482554012619204","332489675999361250825695787902589851609","176365517570995130166562608879835636437","204133425909586796962148635295946243285","306513657856478761071854638059995619664","209508161927417262742965921339316924068"],"threshold":0.9},"deprecated":false,"target":{"file":"src/libjasper/include/jasper/jas_seq.h"},"signature_version":"v1"},{"source":"https://github.com/jasper-software/jasper/commit/2e82fa00466ae525339754bb3ab0a0474a31d4bd","id":"CVE-2016-10248-88bc18b5","deprecated":false,"target":{"function":"jpc_undo_roi","file":"src/libjasper/jpc/jpc_dec.c"},"signature_version":"v1","signature_type":"Function","digest":{"function_hash":"300009143571302029714413275190333053047","length":794}},{"source":"https://github.com/jasper-software/jasper/commit/2e82fa00466ae525339754bb3ab0a0474a31d4bd","id":"CVE-2016-10248-d79a5658","digest":{"line_hashes":["312046892942525334833231597288904871208","331483401292352016434812509318039800294","339418996086357033761368163352010004758","297747516350643429271873413311506903807","308788279227875488471386197637205321117","100060094183052737176262676252191764283","177400214351083848424278930681593531922"],"threshold":0.9},"deprecated":false,"target":{"file":"src/libjasper/jpc/jpc_dec.c"},"signature_type":"Line","signature_version":"v1"},{"source":"https://github.com/jasper-software/jasper/commit/2e82fa00466ae525339754bb3ab0a0474a31d4bd","id":"CVE-2016-10248-dfefac93","target":{"file":"src/libjasper/jpc/jpc_tsfb.c"},"signature_version":"v1","digest":{"line_hashes":["119123647092762913742815363730060137518","133732635935258826261011538303425761496","117654475021229491682697825348655190972","148942844950794296650273566861507259549"],"threshold":0.9},"signature_type":"Line","deprecated":false},{"source":"https://github.com/jasper-software/jasper/commit/2e82fa00466ae525339754bb3ab0a0474a31d4bd","id":"CVE-2016-10248-fcabd592","signature_type":"Line","digest":{"line_hashes":["41318202135477798845071348004250639885","124617717506131243092864552019875925200","203778577402385495315866169931701378808"],"threshold":0.9},"deprecated":false,"target":{"file":"src/libjasper/include/jasper/jas_math.h"},"signature_version":"v1"}],"vanir_signatures_modified":"2026-04-11T03:43:27Z"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}