In OpenJPEG 2.3.0, there is an integer overflow vulnerability in the opjt1encode_cblks function (openjp2/t1.c). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file.
{ "urgency": "unimportant" }