Raphael Geissert discovered multiple denial of service flaws in OpenJPEG. If a specially-crafted image were opened by an application linked against OpenJPEG, it could cause the application to crash. These issues only affected the version of OpenJPEG as shipped in Fedora (version 1.5.1). Acknowledgements: Red Hat would like to thank Raphael Geissert for reporting these issues during a review for EDF.
Created openjpeg tracking bugs for this issue: Affects: fedora-all [bug 1038409]
Created mingw-openjpeg tracking bugs for this issue: Affects: fedora-all [bug 1038981]
Created attachment 835153 [details] proposed patch