Openjpeg · Openjpeg · CVE-2015-8871
**Name of the Vulnerable Software and Affected Versions**
OpenJPEG versions prior to 2.1.1
**Description**
The issue is related to a use-after-free vulnerability in the `opj j2k write mco` function, located in the j2k.c file. This vulnerability allows remote attackers to have an unspecified impact via unknown vectors.
**Recommendations**
For versions prior to 2.1.1, update to version 2.1.1 or later to resolve the issue.