An off-by-one flaw, leading to a heap-based buffer overflow , and an unrestricted stack memory use flaw were found in JasPer, a library for manipulating JPEG-2000 files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.