openjpeg: heap buffer overflow in color_apply_icc_profile in bin/common/color.c (CVE-2018-21010)
A vulnerability was found in OpenJPEG before 2.3.1 has a heap buffer overflow in color_apply_icc_profile in bin/common/color.c.
References:
- https://nvd.nist.gov/vuln/detail/CVE-2018-21010
- https://security-tracker.debian.org/tracker/CVE-2018-21010
Patch:
https://github.com/uclouvain/openjpeg/commit/2e5ab1d9987831c981ff05862e8ccf1381ed58ea