CVE-2016-8332 vulnerability has been reported to OpenJPEG developers and it was fixed with version 2.1.2.2. The vulnerability was disclosed by Cisco Talos group in JPEG2000 image file format. It can cause an out of bound heap write resulting in heap corruption leading to arbitrary code execution under attacker control. This vulnerability has assigned with CVSS score 7.5 as High vulnerability risk. It has been fixed with the OpenJpeg library and has been assigned with a CVSS Score of 7.0 8.9.”]
Source: https://gbhackers.com/open-jpeg-vulnerability-cve-2016-8332/