Fix CVE-2007-2721 (heap corruption in jpc_qcx_getcompparms()).

Copied from Fedora.

http://pkgs.fedoraproject.org/cgit/rpms/jasper.git/tree/patch-libjasper-stepsizes-overflow.diff

--- jasper-1.900.1.orig/src/libjasper/jpc/jpc_cs.c	2007-01-19 22:43:07.000000000 +0100
+++ jasper-1.900.1/src/libjasper/jpc/jpc_cs.c	2007-04-06 01:29:02.000000000 +0200
@@ -982,7 +982,10 @@ static int jpc_qcx_getcompparms(jpc_qcxc
 		compparms->numstepsizes = (len - n) / 2;
 		break;
 	}
-	if (compparms->numstepsizes > 0) {
+	if (compparms->numstepsizes > 3 * JPC_MAXRLVLS + 1) {
+		jpc_qcx_destroycompparms(compparms);
+                return -1;
+        } else if (compparms->numstepsizes > 0) {
 		compparms->stepsizes = jas_malloc(compparms->numstepsizes *
 		  sizeof(uint_fast16_t));
 		assert(compparms->stepsizes);
ipts'>koszko-scripts</option>
</select> <input type='submit' value='switch'/></form></td></tr>
<tr><td class='sub'>Wojtek's customized Guix</td><td class='sub right'></td></tr></table>
<table class='tabs'><tr><td>
<a href='/guix/about/'>about</a><a href='/guix/'>summary</a><a href='/guix/refs/?id=0f6aaf2f62fe3f29bec9751178ea2a7c39706f80'>refs</a><a class='active' href='/guix/log/tests/syscalls.scm'>log</a><a href='/guix/tree/tests/syscalls.scm?id=0f6aaf2f62fe3f29bec9751178ea2a7c39706f80'>tree</a><a href='/guix/commit/tests/syscalls.scm?id=0f6aaf2f62fe3f29bec9751178ea2a7c39706f80'>commit</a><a href='/guix/diff/tests/syscalls.scm?id=0f6aaf2f62fe3f29bec9751178ea2a7c39706f80'>diff</a></td><td class='form'><form class='right' method='get' action='/guix/log/tests/syscalls.scm'>
<input type='hidden' name='id' value='0f6aaf2f62fe3f29bec9751178ea2a7c39706f80'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/guix/log/?id=0f6aaf2f62fe3f29bec9751178ea2a7c39706f80'>root</a>/<a href='/guix/log/tests?id=0f6aaf2f62fe3f29bec9751178ea2a7c39706f80'>tests</a>/<a href='/guix/log/tests/syscalls.scm?id=0f6aaf2f62fe3f29bec9751178ea2a7c39706f80'>syscalls.scm</a></div><div class='content'><table class='list nowrap'><tr class='nohover'><th class='left'>Age</th><th class='left'>Commit message (<a href='/guix/log/tests/syscalls.scm?id=0f6aaf2f62fe3f29bec9751178ea2a7c39706f80&amp;showmsg=1'>Expand</a>)</th><th class='left'>Author</th></tr>
<tr><td><span title='2021-10-26 12:46:27 +0200'>2021-10-26</span></td><td><a href='/guix/commit/tests/syscalls.scm?id=f87371bf3e952a211782311dad2971c8820a5150'>syscalls: Add 'openpty' and 'login-tty'.</a><span class='msg-avail'>...<span class='msg-tooltip'>* guix/build/syscalls.scm (openpty, login-pty): New procedures.
* tests/syscalls.scm ("openpty", "openpty + login-tty"): New tests.
</span></span></td><td>Ludovic Courtès</td></tr>