Summary
=======

The package openjpeg2 is vulnerable to multiple issues including arbitrary code execution and denial of service via CVE-2016-9118, CVE-2016-9117, CVE-2016-9116, CVE-2016-9115, CVE-2016-9114 and CVE-2016-9113.

Guidance
========

A the writting time look like debian have no fixes, but Gentoo bugtreacking[1] there are some patches to fix some of the CVEs.

[1] https://bugs.gentoo.org/show_bug.cgi?id=CVE-2016-9113

References
==========

https://security.archlinux.org/AVG-54
https://github.com/uclouvain/openjpeg/issues/861
https://github.com/uclouvain/openjpeg/issues/860
https://github.com/uclouvain/openjpeg/issues/859
https://github.com/uclouvain/openjpeg/issues/858
https://github.com/uclouvain/openjpeg/issues/857
https://github.com/uclouvain/openjpeg/issues/856