Out-of-bounds accesses in the functions pi_next_lrcp, pi_next_rlcp, pi_next_rpcl, pi_next_pcrl, pi_next_rpcl, and pi_next_cprl in openmj2/pi.c in OpenJPEG through 2.3.0 allow remote attackers to cause a denial of service (application crash).
Created openjpeg tracking bugs for this issue:
Affects: fedora-all [bug 1728515]
Created openjpeg2 tracking bugs for this issue:
Affects: epel-all [bug 1728514]
The patch is already part of openjpeg-2.3.1, which is F28+ and epel7.
According to https://github.com/uclouvain/openjpeg/pull/1168#commitcomment-32961642 the patch https://github.com/uclouvain/openjpeg/commit/e1740e7ce79d0a1676db4da0f4189b64e85f52cb was reverted because it did not compile.