An improper computation of ptx0, ptx1, pty0 and pty1 in the function opjgetencoding_parameters in openjp2/pi.c in OpenJPEG through 2.3.0 can lead to an integer overflow.
{ "urgency": "low" }