Gentoo Linux Security Advisory 201710-26 - Multiple vulnerabilities have been found in OpenJPEG, the worst of which may allow remote attackers to execute arbitrary code. Versions less than 2.3.0:2 are affected.
869f6c6e091d19293a71cba637355cc94a93b938d26ef5543bfaaf688f1098ed
OpenJPEG suffers from an out-of-bounds write issue in mqc.c and can be triggered by a malformed bmp.
b9945f6ad76e1a68638b01468a190b714e2ea61d9f0015e17b7e561e9da8d404