Yanxxd

**Name of the Vulnerable Software and Affected Versions** OpenJPEG version 2.3.0 **Description** An issue in OpenJPEG allows remote attackers to cause a denial of service through attempted excessive memory allocation. This occurs in the `opj calloc` function in `openjp2/opj malloc.c` when called from `opj tcd init tile` in `openjp2/tcd.c`. This issue is demonstrated by the 64-bit `opj decompress`. **Recommendations** For OpenJPEG version 2.3.0, at the moment, there is no information about a newer version that contains a fix for this issue.