openjpeg is vulnerable to arbitrary code execution. A heap-based buffer-overflow write allows an attacker to execute arbitrary code on the host OS.
bugzilla.redhat.com/show_bug.cgi?id=1905762
github.com/uclouvain/openjpeg/issues/1284
lists.debian.org/debian-lts-announce/2021/02/msg00011.html
lists.fedoraproject.org/archives/list/[email protected]/message/OQR4EWRFFZQDMFPZKFZ6I3USLMW6TKTP/
lists.fedoraproject.org/archives/list/[email protected]/message/WJUPGIZE6A4O52EBOF75MCXJOL6MUCRV/
secdb.alpinelinux.org/v3.10/main.yaml
secdb.alpinelinux.org/v3.11/main.yaml
secdb.alpinelinux.org/v3.12/main.yaml
security-tracker.debian.org/tracker/CVE-2020-27823
www.debian.org/security/2021/dsa-4882